Техническая информация
- <SYSTEM32>\ping.exe -n 1 -w 250 zxywqxz_q
- <SYSTEM32>\cmd.exe /c "%TEMP%\suicide.bat"
- C:\tmp\cabye.exe
- %TEMP%\suicide.bat
- %TEMP%\aut2.tmp
- %TEMP%\aut1.tmp
- C:\tmp\bp64.exe
- %TEMP%\aut2.tmp
- %TEMP%\aut1.tmp
- DNS ASK zx#####_q.localdomain
- ClassName: 'Shell_TrayWnd' WindowName: ''