Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",zvehihmiphxa install worker
- %TEMP%\ins1.tmp
- 'fe###n.mo.cx':80
- fe###n.mo.cx/HSYIeFIz36b8MMoRan2KIXGzCyuRESS2UmEreRJC/KlGmoSP0VCmby5F8IM+y5ELVKC5mexajKZtgjnY5ik0nkfUx7TgSYcoutuqZZ5ZaUQ=
- fe###n.mo.cx/dJoDfrMWEiumLvJjSffbCBgwkpW7co5hY5VAxhcSXlH3TycbKmc28XscHVeLjGLjnt+on8berUFh9Ax7Mv0xoHEwjOmGL32UprNFSl77EpJEU3WXj8U01UXWdJMEe2eeD3nDda0tSIR9PFmpLqrTNJ+KQtKys357vZRzKz0fosVGJ1KN2A/lrYGSR4WSOd8IX1HsubWC
- DNS ASK fe###n.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''