Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SKSwall for sksgod] 'Start' = '00000002'
- %WINDIR%\skswall\skswall.exe
- NtQueryDirectoryFile, драйвер-обработчик: skswall.sys
- %WINDIR%\skswall\skswall.exe
- <DRIVERS>\skswall.sys
- %WINDIR%\skswall\skswall.exe
- 'ad###.3322.org':3398
- DNS ASK ad###.3322.org