Техническая информация
- '%TEMP%\kakijezij.exe'
- '<SYSTEM32>\taskeng.exe' /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
- %TEMP%\kakijezij.exe
- %TEMP%\JC99F.tmp
- '68.##.59.145':443
- '95.##3.141.50':443
- '37.##.144.177':443
- '77.##.30.156':443
- '77.##.195.68':443
- '18#.#55.243.105':443
- '87.##9.142.189':443
- '85.##5.104.170':443
- '94.##7.129.182':443
- '95.##3.132.118':443
- '19#.#28.203.19':443
- '69.##0.128.71':443
- '98.##4.11.253':443
- '66.##6.61.218':443
- '24.#9.25.40':443
- '98.##6.210.27':443
- '24.##8.217.188':443
- '64.##1.36.35':443
- '69.#.204.16':443
- '17#.#16.247.74':443
- '98.##9.75.164':443
- '76.##5.248.137':443
- DNS ASK dn#.##ftncsi.com
- DNS ASK ic###azip.com
- ClassName: 'Shell_TrayWnd' WindowName: ''