Техническая информация
- %WINDIR%\Temp\123.exe (загружен из сети Интернет)
- <SYSTEM32>\rundll32.exe url.dll,FileProtocolHandler %WINDIR%\temp\123.exe
- %WINDIR%\Temp\123.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\setup_z.exe[1].rar
- 'do##.9mqxmq.com':80
- 'localhost':1035
- do##.9mqxmq.com/1/setup_z.exe.rar
- DNS ASK do##.9mqxmq.com