<Drive name for removable media>:\jBgsmymaMXHg0drvpwnznrxskmvQun\mttqbhpzrHOjpj6BwBxpoDooz2yltQ\Desktop.ini
Modifies file system :
Moves itself:
from <Full path to virus> to <SYSTEM32>\winlogin.exe
Network activity:
Connects to:
'00##.###tcallmeboomx.info':80
UDP:
DNS ASK 00##.###tcallmeboomx.info
Download Dr.Web for Android
Free three-month trial
All protection features available
Renew your trial license in AppGallery/on Google Pay
By continuing to use this website, you are consenting to Doctor Web’s use of cookies and other technologies related to the collection of visitor statistics. Learn more