Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'B9BC6A5C' = '%APPDATA%\B9BC6A5C\bin.exe'
- '%WINDIR%\explorer.exe'
- <SYSTEM32>\cscript.exe
- %APPDATA%\B9BC6A5C\bin.exe
- %APPDATA%\B9BC6A5C\log.dat
- 'nr####okihgl.biz':789
- 'nr####okihgl.co.in':789
- 'nr####okihgl.me.uk':789
- 'de####xslmeb.co.in':789
- 'nr###vokihgl.me':789
- 'di###dyyilkj.me':789
- 'bm###ijgciym.me':789
- 'bm####jgciym.me.uk':789
- 'di####yyilkj.co.in':789
- 'di####yyilkj.me.uk':789
- 'di####yyilkj.biz':789
- 'de####xslmeb.biz':789
- 'ib####thkfil.biz':789
- 'ib####thkfil.co.in':789
- 'ib####thkfil.me.uk':789
- 'i1####639iey72ui.cc':789
- 'ib###sthkfil.me':789
- 'nq###sbgffvt.me':789
- 'de###yxslmeb.me':789
- 'de####xslmeb.me.uk':789
- 'nq####bgffvt.co.in':789
- 'nq####bgffvt.me.uk':789
- 'nq####bgffvt.biz':789
- DNS ASK nr####okihgl.biz
- DNS ASK nr####okihgl.co.in
- DNS ASK di###dyyilkj.me
- DNS ASK de####xslmeb.co.in
- DNS ASK nr###vokihgl.me
- DNS ASK nr####okihgl.me.uk
- DNS ASK bm###ijgciym.me
- DNS ASK bm####jgciym.me.uk
- DNS ASK bm####jgciym.biz
- DNS ASK di####yyilkj.me.uk
- DNS ASK di####yyilkj.biz
- DNS ASK di####yyilkj.co.in
- DNS ASK ib####thkfil.biz
- DNS ASK ib####thkfil.co.in
- DNS ASK nq###sbgffvt.me
- DNS ASK i1####639iey72ui.cc
- DNS ASK ib###sthkfil.me
- DNS ASK ib####thkfil.me.uk
- DNS ASK de###yxslmeb.me
- DNS ASK de####xslmeb.me.uk
- DNS ASK de####xslmeb.biz
- DNS ASK nq####bgffvt.me.uk
- DNS ASK nq####bgffvt.biz
- DNS ASK nq####bgffvt.co.in
- ClassName: 'Indicator' WindowName: ''