解析最新Ursnif恶意软件攻击活动

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