Technical Information
- '<SYSTEM32>\net.exe' stop AdobeFlashPlayerHash
- %TEMP%\nsd2.tmp\nsExec.dll
- %TEMP%\nsd2.tmp\ns3.tmp
- <SYSTEM32>\HS\svchost.exe
- <SYSTEM32>\HS\parameters.ini
- %TEMP%\nsd2.tmp\nsisdl.dll
- 'ha###trem.ru':80
- http://ha###trem.ru/download/ontime/HS_Svc.exe
- DNS ASK ha###trem.ru
- '%TEMP%\nsd2.tmp\ns3.tmp' <SYSTEM32>\cmd.exe /C net stop AdobeFlashPlayerHash>install.log
- '<SYSTEM32>\net1.exe' stop AdobeFlashPlayerHash
- '<SYSTEM32>\cmd.exe' /C net stop AdobeFlashPlayerHash>install.log