Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DoNotAllowExceptions' = '00000000'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'EnableFirewall' = '00000000'
- '<SYSTEM32>\netsh.exe' firewall set opmode mode=DISABLE
- '<SYSTEM32>\netsh.exe' advfirewall set allprofiles state off
- '<SYSTEM32>\rundll32.exe' zipfldr.dll,RouteTheCall %L
- '%WINDIR%\explorer.exe' "%L"
- <Текущая директория>\Dokumen Israel.docx .exe
- 'www.ap###lack.net':80
- 'localhost':1038
- http://www.ap###lack.net/a.exe
- DNS ASK www.ap###lack.net