Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Update.exe' = '%APPDATA%\avwdwadwab\Update.exe'
- %APPDATA%\avwdwadwab\Update.exe
- <SYSTEM32>\wscript.exe "%APPDATA%\avwdwadwab\Data_01.vbs"
- %APPDATA%\avwdwadwab\Data_01.vbs
- %APPDATA%\avwdwadwab\Update.exe
- %APPDATA%\builder.txt
- %APPDATA%\builder.txt
- 'hc##rew.cc':80
- hc##rew.cc/Panel/bot.php?hw###############################################################################
- hc##rew.cc/Panel/command.txt
- DNS ASK hc##rew.cc
- ClassName: 'Indicator' WindowName: ''