Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SeInterC] 'ImagePath' = '<SYSTEM32>\securiic.exe -k netsvcs'
- [<HKLM>\SYSTEM\ControlSet001\Services\SeInterC] 'Start' = '00000002'
- <SYSTEM32>\lfdawqym.exe
- <SYSTEM32>\securiic.exe -k netsvcs /install /silent
- <SYSTEM32>\oxtvcz.dll
- <SYSTEM32>\lfdawqym.exe
- <SYSTEM32>\securiic.exe
- <SYSTEM32>\lfdawqym.exe
- 'po##.bol.com.br':110
- 'localhost':53125
- DNS ASK po##.bol.com.br