Техническая информация
- '%TEMP%\workshop.exe'
- '<LS_APPDATA>FTXrBUcxcz.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%TEMP%\workshop.exe" "workshop.exe" ENABLE
- '<SYSTEM32>\ntvdm.exe' -i1
- %TEMP%\scs4D17.tmp
- %TEMP%\workshop.exe
- %TEMP%\scs4B61.tmp
- <LS_APPDATA>FTXrBUcxcz.exe
- <LS_APPDATA>TaSutmPawK.exe
- %TEMP%\scs4D17.tmp
- %TEMP%\scs4B61.tmp
- DNS ASK dn#.##ftncsi.com
- DNS ASK am######45njrat.ddns.net
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-ac4.928.7bc'