Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'wmpnetwrk.exe' = '%APPDATA%\wmpnetwrk.exe'
- %APPDATA%\wmpnetwrk.exe
- %TEMP%\ws2_32.lib
- <Текущая директория>\libeay32.dll
- %APPDATA%\wmpnetwrk.exe
- 'ti##url.com':80
- 'ti#y.cc':80
- ti##url.com/4f319b5c
- ti##url.com/00bb13f4
- ti#y.cc/4f319b5c
- ti#y.cc/00bb13f4
- DNS ASK br#.to
- DNS ASK ti#y.cc
- DNS ASK ti##url.com
- DNS ASK ti###b.nist.gov
- 'ti###b.nist.gov':1037
- 'ti###b.nist.gov':123
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Indicator' WindowName: ''