# Win32.Trojan.BitcoinMiner
* C\Users\{USer}\AppData\Local\audiodg\
1.bat
audiodg.exe
chrome.bat
Upaudiodg.zip
* C\Users\{user}\AppData\Local\Temp\RarSFX0 ~ C\Users\{user}\AppData\Local\Temp\RarSFX9
hstart.exe - 030bad1af91f0ed51fdf8119c8989fada6ed879e
cgminer-nogpu.exe - f2c2ba3bdb1f2e828c27d0c65f5cf9742b776690
* C\Users\{user}\AppData\Roaming
* C\Users\{user}\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
WnRar.exe - 5c06d6326b34359b85e50da29615ffe49c719b89
* C\Users\Ad\AppData\Roaming\system32
bfgminer-rpc.exe - f48b8879d4e9ea2b754d3b86616fac3ddc3a2128
system32.exe - 376f227dc57b435a9b2c4d9898f885b738f8aba9
....
|
|
|