Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'chimera' = '%TEMP%\chm.exe'
- '%TEMP%\nstC938.tmp\chimera-01-11.exe'
- %TEMP%\chm.exe
- %TEMP%\nstC938.tmp\helper.dll
- %TEMP%\nstC938.tmp\chimera-01-11.exe
- 'ic#.com':80
- ic#.com/people/698336063/
- DNS ASK ic#.com
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'chm-n1xhj2gnxhsss2hehjej2hh222bbb' WindowName: 'xoi1ku1oiaffrdtdvjk2r32k2k2krb3nb333'