Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Updaterui' = '%TEMP%\VsTckMgr.exe'
- %WINDIR%\Explorer.EXE
- %TEMP%\VsTckMgr.exe
- %TEMP%\ntoshtm.txt
- 'of#####l.serveuser.com':80
- of#####l.serveuser.com/httpdocs/mm/crnjeufu:00-00-00-00-00-01/Cmwhite
- of#####l.serveuser.com/cgi-bin/Owpq4.cgi
- DNS ASK of#####l.serveuser.com
- ClassName: 'Indicator' WindowName: ''