Техническая информация
- '%TEMP%\fivxxle.exe'
- '%TEMP%\hiiiklj.exe'
- '%TEMP%\heem.exe'
- %TEMP%\fivxxle.exe
- %TEMP%\hiiiklj.exe
- %TEMP%\heem.exe
- 'az###oman.com':80
- '5.##.86.97':80
- 'ge###mokers.com':80
- 'as###dmen.com':80
- az###oman.com/load/25/?p=#########
- 5.##.86.97/load/25/?p=#########
- ge###mokers.com/b/shoe/456
- as###dmen.com/load/25/?p=#########
- DNS ASK az###oman.com
- DNS ASK as###dmen.com
- DNS ASK ge###mokers.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'
- ClassName: '' WindowName: '(null)'