Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Voiq' = '"%APPDATA%\Fukye\voiq.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- '%APPDATA%\Fukye\voiq.exe'
- <SYSTEM32>\cscript.exe
- %TEMP%\VRXDEB3.bat
- <LS_APPDATA>\wobuyl.kuz
- %APPDATA%\Fukye\voiq.exe
- '98.##6.120.96':6227
- '85.##.230.128':14557
- '77.##.216.106':5011
- '68.##0.76.126':1024
- '78.##.68.191':3394
- '31.##6.117.229':11976
- '88.##.107.28':7605
- '21#.#30.254.114':14154
- '21#.#7.148.66':29170
- '79.##1.143.6':10647
- '18#.#7.50.15':17051
- '20#.#58.93.238':14503
- '99.#2.65.71':5456
- '76.##6.114.217':1684
- '10#.#4.172.39':3059
- ClassName: 'Indicator' WindowName: ''