Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Fiif' = '"%APPDATA%\Iqpe\fiif.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Iqpe\fiif.exe'
- <SYSTEM32>\ctfmon.exe
- <LS_APPDATA>\caxo.tij
- %APPDATA%\Iqpe\fiif.exe
- '84.##.222.81':10378
- '87.##2.61.18':12538
- '19#.#1.87.51':23710
- '17#.#3.238.72':22869
- '14#.#36.161.103':14675
- '19#.#2.161.35':23153
- '21#.#09.241.213':16882
- '98.##1.143.22':19595
- '64.##0.155.194':19894
- '18#.#41.97.79':16114
- '79.##.182.147':11922
- '21#.#0.206.102':21985
- '18#.#48.91.99':16033
- '69.##.132.197':20764
- '94.##0.232.184':18351
- ClassName: 'Indicator' WindowName: ''