Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",lhaietwdbo install worker
- %TEMP%\ins1.tmp
- 'mo###ello.cz.cc':80
- mo###ello.cz.cc/idmGGBvwpV2W0gfAJI3om6k/sdbUsihAlT8vFGTt8+JsNPlZFti/PkPskEQc3ZgFbLVtH0fjEhzz4H3i7E8CbJUScqPXzXZJXqW6dLvmoZM=
- mo###ello.cz.cc/zeoUXYEkxHZe75kMpGx8fSVVhk7/9w5wSrdcK/kaPNPqzp6FUjvmgY7sFj6ZAytJjkOa/4KjpyD7jMSKxMDCmNLFm0qGoYH0PHXMxRwODOeFmC2BE1qg18wu+klzoZsw3kcxR1Xl6ZHaz8vK+kgvtdTCSHktmNnXiwxlDZEaGE5K/amY3xYV1cSgQmvw5WAsZRC68oCC
- DNS ASK mo###ello.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''