Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'YnexglS' = 'C:\Arquivos de programas\TvefeuY\VbpvrtU\YnexglS.exe -Start'
- <SYSTEM32>\notepad.exe
- 'bo########.dominiotemporario.com':80
- bo########.dominiotemporario.com/index1.html
- DNS ASK bo########.dominiotemporario.com
- ClassName: 'Indicator' WindowName: ''