Техническая информация
- '<SYSTEM32>\svchost.exe' connect
- <SYSTEM32>\svchost.exe
- %TEMP%\logrdeventsmaxo4.cfg
- 'www.jo####gs.xpg.com.br':80
- 'bi#.ly':80
- 'www.je####te.xpg.com.br':80
- 'www.ji####go.xpg.com.br':80
- www.jo####gs.xpg.com.br/joggings2020.txt
- www.ji####go.xpg.com.br/jindungo2020.txt
- www.je####te.xpg.com.br/jejunite2020.txt
- bi#.ly/YddCcn?
- DNS ASK www.jo####gs.xpg.com.br
- DNS ASK bi#.ly
- DNS ASK www.je####te.xpg.com.br
- DNS ASK www.ji####go.xpg.com.br
- ClassName: '' WindowName: 'svchost.exe'