Техническая информация
- '%TEMP%\cmuxamaf.exe'
- '<SYSTEM32>\DllHost.exe' 0x978 dllhost.exe
- '<SYSTEM32>\DllHost.exe' /pid=0x4a4 /log
- <Служебный элемент>
- %TEMP%\cmuxamaf.exe
- %TEMP%\tmpB7C3.inf
- '65.##.236.173':443
- '66.##6.63.33':443
- '69.##4.171.44':443
- '71.##4.36.73':443
- '98.##2.64.184':443
- '66.##6.61.218':443
- '98.##4.11.253':443
- '98.##6.210.27':443
- '71.##.130.24':443
- '21#.#6.93.250':443
- '76.#8.92.4':443
- '17#.#48.31.1':443
- '17#.#48.31.6':443
- '17#.#48.22.227':443
- '72.##0.82.80':443
- '64.##3.121.6':443
- '73.##5.203.173':443
- '18#.#55.239.34':443
- '69.#.204.114':443
- '17#.#48.27.163':443
- '17#.#43.255.79':443
- DNS ASK dn#.##ftncsi.com
- DNS ASK ic###azip.com
- ClassName: 'Shell_TrayWnd' WindowName: ''