Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'E9B10259-E844-45B1-88D0-60F754595A4F' = '%APPDATA%\{E9B10259-E844-45B1-88D0-60F754595A4F}\Msascue.exe'
- '%APPDATA%\{E9B10259-E844-45B1-88D0-60F754595A4F}\Msascue.exe'
- %APPDATA%\{E9B10259-E844-45B1-88D0-60F754595A4F}\Msascue.exe
- 'be###.h4x00r.com':80
- 'wp#d':80
- wp#d/wpad.dat
- be###.h4x00r.com/bky/add-log
- be###.h4x00r.com/bky/get-inst
- DNS ASK be###.h4x00r.com
- DNS ASK wp#d
- ClassName: 'Indicator' WindowName: '(null)'