Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'kmyshare.exe' = '%APPDATA%\Microsoft\kmyshare.exe'
- <SYSTEM32>\cscript.exe
- %APPDATA%\3735546.bat
- %APPDATA%\Microsoft\kmyshare.exe
- '17#.#36.153.210':7779
- '21#.#4.151.75':7779
- '64.##2.249.5':7779
- '66.##.198.94':7779
- '19#.#7.213.47':7779
- '17#.#36.185.238':7779
- '80.##.191.158':8080
- '19#.#54.110.228':7779
- '10#.#8.148.51':7779
- '17#.#8.31.137':7779
- '20#.#13.235.41':7779
- ClassName: 'Indicator' WindowName: '(null)'