Техническая информация
- '<SYSTEM32>\PING.EXE' 127.0.0.1 -n 3
- %WINDIR%\Explorer.EXE
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\VoidRay_0429[1].php
- <SYSTEM32>\Hint58d.dll
- <LS_APPDATA>\Microsoft\Windows\Temporary Internet Files\Content.IE5\YIF7DGLM\VoidRay_0429[1].php
- 'lp#####ay.lingpao8.com':80
- lp#####ay.lingpao8.com/VoidRay_0429.php?UI###################
- DNS ASK lp#####ay.lingpao8.com