Техническая информация
- '%TEMP%\setnt.exe'
- %TEMP%\setnt.exe
- %TEMP%\utt6148.tmp
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\2VAZY7AN\unk22[1].pne
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\unk22[1].pne
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\unk22[1].pne
- 'oa#####ecapitalinc.com':80
- 'ma##m.com':80
- '20#.#53.35.133':45239
- oa#####ecapitalinc.com/wp-includes/images/unk22.pne
- ma##m.com/images/unk22.pne
- DNS ASK oa#####ecapitalinc.com
- DNS ASK ma##m.com
- ClassName: 'coster' WindowName: 'madOS'