Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ypktwvkxscghwrn install worker
- %TEMP%\ins1.tmp
- 'fe###r.mo.cx':80
- fe###r.mo.cx/JooVBQOCwSB00oU3xdIvAKNp0sKOQTqrL7se+09M4vYC2I1COj38JKa+7W8A/dF4nUIANrd28TiBZwvislfPtYTYIapMnioshmz+2HINf2k=
- fe###r.mo.cx/oulDJkBjipGn4YsZe9iuCbFbCZw0MyHamBoJZwP5x+bdlKMOIk8vPA+L9t7N6cpDD647W68MCLueN8VmCq9zZDBIrglWM+Txc06xi6yQnqNVNJSD1VJ95c+oe9Sq8XJUEuXQtmylxHrmRVXJe3oMwkJwScGQPUc+yX/xpO3+gx3KKwynmPz5lZO3hp//zsOYEhIvuBQR
- DNS ASK fe###r.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''