Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'kmyshare.exe' = '%APPDATA%\Microsoft\kmyshare.exe'
- <SYSTEM32>\cscript.exe
- %APPDATA%\2288127.bat
- %APPDATA%\Microsoft\kmyshare.exe
- '19#.#63.232.235':8080
- '18#.#53.237.6':8080
- '72.#.156.20':8080
- '50.##.146.109':8080
- '19#.#54.110.228':8080
- '58.#7.0.5':8080
- '20#.#3.183.196':8080
- '91.##1.25.23':8080
- '94.##.218.166':8080
- '50.##.152.124':8080
- '69.##.69.191':8080
- ClassName: 'Indicator' WindowName: '(null)'