Техническая информация
- %HOMEPATH%\Start Menu\Programs\Startup\iner.exe
- %TEMP%\rundll.exe -o http://eu#.####lemining.com:8344 -u N3oSales_2 -p 123456 -t 1 -g no
- %TEMP%\rundll.exe -o http://eu#.####lemining.com:8344 -u N3oSales_1 -p 123456 -t 2 -g no
- %HOMEPATH%\Start Menu\Programs\Startup\iner.exe
- %TEMP%\usft_ext.dll
- %TEMP%\miner.dll
- %TEMP%\rundll.exe
- 'eu#.###plemining.com':8344
- DNS ASK eu#.###plemining.com
- ClassName: 'Shell_TrayWnd' WindowName: ''