Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",sxqvijyusox install worker
- %TEMP%\ins1.tmp
- 'ro##y.mo.cx':80
- ro##y.mo.cx/SiedkhcqEwmGQc1BBEQcdS5fe/Jgm21WhhupNH1qmOA6cz6O+Ug6x7W3TFijf7BAQwDzd4V4ICxJ03bQ85JZQh/anrBD9oi0Jkxpb4RWxaA=
- ro##y.mo.cx/bEOGXzDzegMzoTfqsno2E7PC1RHoPeQOqPnqCD7of8EJw2PY4DwXdscKOOlHH7LttiHsj2EMyo1rkpuqmhZHMZrEq4E+QDxVLC1hoBGLnHYojEmk1NyN8uRrxFdyb8oDK+rXrrW0LHKVJrqeAVd7pDD0TLnbDzYqIIE3H5TlvRX3Jj1BNg6qHz1LkAV9rfzE8M3aWXBc
- DNS ASK ro##y.mo.cx
- '<IP-адрес в локальной сети>':1037
- ClassName: 'Shell_TrayWnd' WindowName: ''