Техническая информация
- <SYSTEM32>\cmd.exe /c C:\0NPNQR9I3.BAT
- <SYSTEM32>\cmd.exe /c ""C:\0NPNQR9I3.BAT" "
- <SYSTEM32>\regsvr32.exe /s "%WINDIR%\AJIMYAVMGCQ.dll"
- %WINDIR%\AJIMYAVMGCQ.dll
- C:\0NPNQR9I3.BAT
- %PROGRAM_FILES%\C9Y4HOQ15D\DXP613IDGD.EXE
- %WINDIR%\AJIMYAVMGCQ.txt
- %PROGRAM_FILES%\C9Y4HOQ15D\DXP613IDGD.EXE
- <Полный путь к вирусу>
- '58.#9.58.27':443
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'AJIMYAVMGCQ' WindowName: 'peexirvrphdme'