Техническая информация
- '%APPDATA%\Flashvlc.exe'
- '%APPDATA%\Flash\sgminer.exe' -s
- '%APPDATA%\Flashvlc.exe' (загружен из сети Интернет)
- '%APPDATA%\Flash\sgminer.exe' (загружен из сети Интернет)
- '<SYSTEM32>\wscript.exe' "%APPDATA%/Flash/firstsg.vbs"
- '<SYSTEM32>\wscript.exe' "%APPDATA%/Flash/updatesg.vbs"
- '<SYSTEM32>\wscript.exe' "%APPDATA%/Flash/updatesec.vbs"
- '<SYSTEM32>\wscript.exe' "%APPDATA%/Flash/startsec.vbs"
- %APPDATA%\Flash\info.txt
- %APPDATA%\Flash\updatesec.vbs
- %APPDATA%\Flash\report.log
- %APPDATA%\Flashvlc.exe
- %APPDATA%\Flash\startsec.vbs
- %APPDATA%\Flash\firstsg.vbs
- %APPDATA%\Flash\sgminer.exe
- %APPDATA%\Flash\flashsec.exe
- %APPDATA%\Flash\updatesg.vbs
- 'sd####54hhdf.com':80
- '5.###.248.85':80
- 'localhost':1036
- http://5.###.248.85/info.txt
- http://5.###.248.85/updatesec.vbs
- http://sd####54hhdf.com/report.log
- http://5.###.248.85/vlc.exe
- http://5.###.248.85/startsec.vbs
- http://5.###.248.85/firstsg.vbs
- http://5.###.248.85/sgminer.exe
- http://5.###.248.85/flashsec.exe
- http://5.###.248.85/updatesg.vbs
- DNS ASK sd####54hhdf.com
- ClassName: 'MS_WINHELP' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''