Техническая информация
- "%TEMP%\moon-player3087.exe" (загружен из сети Интернет)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\moon-player3087[1].exe
- %TEMP%\moon-player3087.exe
- %APPDATA%\Microsoft\Crypto\RSA\S-1-5-21-1275210071-117609710-1801674531-500\88603cb2913a7df3fbd16b5f958e6447_ffcb838e-6d3b-4e44-a259-8ac8f5c94c4f
- %TEMP%\tmp.dat
- %APPDATA%\Microsoft\Protect\S-1-5-21-1275210071-117609710-1801674531-500\bd11e33e-5cda-42d9-8680-0e9b4bc5d85f
- %TEMP%\tmp.dat
- 'mo###player.com':80
- 'localhost':1037
- mo###player.com/download/moon-player3087.exe
- DNS ASK mo###player.com