Техническая информация
- [<HKLM>\SYSTEM\ControlSet001\Services\nt0drv\Parameters] 'ServiceDll' = '<SYSTEM32>\\Rundll64.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\nt0drv] 'ImagePath' = '<SYSTEM32>\svchost.exe -k netsvcs'
- [<HKLM>\SYSTEM\ControlSet001\Services\nt0drv] 'Start' = '00000002'
- '<SYSTEM32>\svchost.exe' -k netsvcs
- <SYSTEM32>\Rundll64.dll
- 'sj##.3322.org':7410
- DNS ASK sj##.3322.org