Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",xncujvchq install
- %TEMP%\ins1.tmp
- 'ne###n.co.be':80
- ne###n.co.be/IxxXBaGVNTlIhur9oU2PO1klaHi95Yq7EInyCKUwVdFEUSCP12euy3LB9pt66h3q8PS++eFPPXs3soxWUWjKeUC0goesi1C1QsXSYTd4G+s=
- ne###n.co.be/PtsyXdaNfOmYITGEFWwDuQxrowLhzob1r7Fzx3Ts1hCenKMxHRg+7EzXN1RNzyNRdoRnmQTQPJUsnbl63MxVkqg0xJS094JKu5fv6DP6bZfq1d2WYK0y+b4pqclsl+OezRReGwFnhB8t2lig8YA9259zqPI5LA09Z1Bhas3q455Ly1L3KjZnz4x7+/YCJDCItgxAoInc
- DNS ASK ne###n.co.be
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''