Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'kmyshare.exe' = '%APPDATA%\Microsoft\kmyshare.exe'
- <SYSTEM32>\cscript.exe
- %APPDATA%\7051121.bat
- %APPDATA%\Microsoft\kmyshare.exe
- '27.##4.127.10':8080
- '17#.#03.112.215':8080
- '78.##9.181.191':8080
- '50.##.146.134':8080
- '20#.#97.254.94':8080
- '50.##.146.109':8080
- '20#.#3.183.196':8080
- '5.###.208.53':8080
- '50.#7.99.2':8080
- '10#.#5.59.120':8080
- ClassName: 'Indicator' WindowName: '(null)'