Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",xgehpmgv install
- %TEMP%\ins1.tmp
- 'so###llo.mo.cx':80
- so###llo.mo.cx/meayDtvK8rLjbfAER4lAleDQMLXmvs3K66IN3iU8lxUdPvj2NvR2TM7h72KMIJMHdqixWwZSIU2ANW4W0x3HLM91hUhjsq+3u5IigKinV4Y=
- so###llo.mo.cx/LsCPvoarMs9+coSJnzryQB76cleNb46abu4UqzKnAF+U7UPtfoa8E/qvj/cSR9/H/DYm7jVQYbVXareaCaBYpfzZdB0bpzDO72u6cHi6kdnfwvjrjwHVQxw9M68LaYXlUF7zErDLo9IvQLxaJZkSdBmLNlnRdUg5vsBGYlM76ucfXpfIXA2wIzvCkGIbWJLc3WXOJ+PR
- DNS ASK so###llo.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''