Техническая информация
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'xjNulV1UduY4swX' = '%APPDATA%\AudioTreiber_x64.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'xjNulV1UduY4swX' = '%APPDATA%\AudioTreiber_x64.exe'
- %APPDATA%\AudioTreiber_x64.exe
- %APPDATA%\AudioTreiber_x64.exe
- 'c0#e.ws':80
- c0#e.ws/b47fc7lqa-bnet/gate.php/gate.php?hw##########################################################################################
- DNS ASK c0#e.ws
- '<IP-адрес в локальной сети>':1033
- ClassName: 'Indicator' WindowName: ''