Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",wvpfmzkdjzwvdp install
- %TEMP%\ins1.tmp
- 'wo###nen.co.be':80
- wo###nen.co.be/ERupgTNu9LbU0IW1uGDCeDcu51HeH1/5HNysMbLUO+Ko/WEuCs+/C4Umk2aSRR6lXiQhfgVn1Ok1+YGh5G0A+j6RTV28GYS3QnZsJmBS8Np1gg==
- wo###nen.co.be/hTqYqSnkC9VHcR0DNfglSzQEDfLm56vAnblLRGZpWoE/sB92lW6bUE7wE8NQ6QTUqIcp5jRyrJUFvg9Dk6xiXyfqRLZXvymy8z0JHBH/InZynB+IgpzFIy9slm9rzJ4fcgGunDBCt2s1os68JXMJzDq14PIRnXNPd5QSLmiXyxdMgDqxGCYyDaqUrxg2oOv/QgyFLEEBqdM=
- DNS ASK wo###nen.co.be
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''