Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'EEAF1441' = '%APPDATA%\EEAF1441\bin.exe'
- '%WINDIR%\explorer.exe'
- <SYSTEM32>\cscript.exe
- %APPDATA%\EEAF1441\bin.exe
- %APPDATA%\EEAF1441\log.dat
- 'px####gsjjio.xyz':80
- DNS ASK px####gsjjio.xyz
- ClassName: 'Indicator' WindowName: ''