Техническая информация
- %TEMP%\setup\svchost.exe
- <SYSTEM32>\wbem\mofcomp.exe -N:root\cimv2 <SYSTEM32>\wbem\asecimv2.mof
- <SYSTEM32>\cscript.exe %TEMP%\vbs3.vbs
- <SYSTEM32>\wbem\scrcons.exe -Embedding
- <SYSTEM32>\cmd.exe /c %TEMP%\tem1.tmp.bat
- <SYSTEM32>\cscript.exe %TEMP%\vbs2.vbs
- <SYSTEM32>\net1.exe start winmgmt
- %TEMP%\vbs3.vbs
- <SYSTEM32>\wbem\asecimv2.mof
- %TEMP%\tmp4.tmp
- %TEMP%\setup\svchost.exe
- %TEMP%\tem1.tmp.bat
- %TEMP%\vbs2.vbs
- <SYSTEM32>\wbem\asecimv2.mof
- %TEMP%\tmp4.tmp
- 'sb#####ddos.3322.org':8866
- DNS ASK sb#####ddos.3322.org