Техническая информация
- '%TEMP%\hm6439.exe'
- %TEMP%\hm6439.exe
- %TEMP%\kerdll.dll
- %TEMP%\kerdll.dat
- 'b.###ne.qq.com':80
- b.###ne.qq.com/cgi-bin/blognew/blog_output_data?ui#############################
- DNS ASK b.###ne.qq.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '????????????' WindowName: '????????????'