Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",wahvafqsszpfa install
- %TEMP%\ins1.tmp
- 'lo###on.co.be':80
- lo###on.co.be/aPscMPghkZU+jmbbOPalJQhCRHxoYkC+yt62TdBE5gEvAcpsIt23HFMfnUcBLTzez+xT/JB4E46zL/QR071yzo4CU/S0eCTg+C4Zn3/CGbg=
- lo###on.co.be/ycIfSRBmqT8S7QzlSRyc7hKqErw8VQG3Y3Tg4/7z2JsAm4t+jYXdRvbHUWLPTF4QuH9ME629JiurUk4dJsllScrby8n+AdKMhnsxWrdBQTy75EIWdszhTegD+q9EVo96B3w8bBv1b5RGuqW/vWXoX/90JV2c5zlvdoQopEnxYisDkIgt/94ADs4JjhG5vbo2A3PiBkxW
- DNS ASK lo###on.co.be
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''