Техническая информация
- <SYSTEM32>\95C879F.exe
- <SYSTEM32>\E27EC2F.exe
- <SYSTEM32>\cmd.exe /c <SYSTEM32>\DS.bat
- <SYSTEM32>\rundll32.exe url.dll,FileProtocolHandler "<SYSTEM32>\95C879F.exe"
- <SYSTEM32>\rundll32.exe url.dll,FileProtocolHandler "<SYSTEM32>\E27EC2F.exe"
- <SYSTEM32>\DS.bat
- <SYSTEM32>\Rpmetvy.cc3
- <SYSTEM32>\Ramrtuy.cc3
- %TEMP%\SE3.tmp
- <SYSTEM32>\E27EC2F.exe
- %TEMP%\SE1.tmp
- %TEMP%\SE2.tmp
- <SYSTEM32>\95C879F.exe
- %TEMP%\SE3.tmp
- %TEMP%\SE2.tmp
- %TEMP%\SE1.tmp
- 'www.lo##18x.com':8706
- DNS ASK www.lo##18x.com