Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '8FA53171' = '%APPDATA%\8FA53171\bin.exe'
- '%WINDIR%\explorer.exe'
- <SYSTEM32>\cscript.exe
- %APPDATA%\8FA53171\bin.exe
- %APPDATA%\8FA53171\log.dat
- 'jd####yebd830oiu.cc':80
- http://jd####yebd830oiu.cc/forie82ye7823jd9ce/
- DNS ASK jd####yebd830oiu.cc
- ClassName: 'Indicator' WindowName: ''