Техническая информация
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 1
- '<SYSTEM32>\rundll32.exe' "%PROGRAM_FILES%\Google\122671.dll",MainThread
- ClassName: 'Filemonclass' WindowName: ''
- ClassName: 'Regmonclass' WindowName: ''
- %PROGRAM_FILES%\Google\122671.dll
- из <Полный путь к вирусу> в <SYSTEM32>\123734.bak
- 'ip.cn':80
- ip.cn/index.php?ip###############
- DNS ASK ip.cn
- ClassName: '18467-41' WindowName: ''
- ClassName: '4823-00000029' WindowName: ''