Техническая информация
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 'shell' = 'explorer.exe,%APPDATA%\Other.res'
- '<SYSTEM32>\svchost.exe'
- <SYSTEM32>\svchost.exe
- %APPDATA%\Other.ico
- %APPDATA%\Other.res
- 'ut##x.com':80
- ut##x.com/ym-HgNWvvPpSQxaViwgomiLsv1zVpDeQdfKqbCCvhmfXRMscpmlztczlbc1MScy5mzsh_Jloo4ppta-vjri_atky_jWLJzuwqjZgd2gp8MKdm2uePhdk8kr1Kacm8.html
- DNS ASK ut##x.com