Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Project1' = ''
- chrome.exe
- <LS_APPDATA>\kbklbghibfnjgbkdjfoahnbkmlckecip\manifest.json
- <LS_APPDATA>\kbklbghibfnjgbkdjfoahnbkmlckecip\background.js
- <LS_APPDATA>\kbklbghibfnjgbkdjfoahnbkmlckecip\<Имя вируса>.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\manifest[1].json
- <Текущая директория>\PreferencesNew
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\background[1].js
- %TEMP%\~DF1AF7.tmp
- 'ak#####elefonburada.com':80
- 'localhost':1036
- ak#####elefonburada.com/dosyalar/manifest.json
- ak#####elefonburada.com/dosyalar/background.js
- DNS ASK ak#####elefonburada.com
- ClassName: 'Indicator' WindowName: '(null)'