Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",vkipmufqupno install worker
- %TEMP%\ins1.tmp
- 'me###onk.mo.cx':80
- me###onk.mo.cx/MjOOJYOsEU6s2+Et1JsgD2yt3cG3LWsjT7WHB1lYxVKjZYw0qKeFmT74LORszTN78bMXMxIM/JXd0Q8qSwEHTk9jz1SEi9h/be+DrjFtR4c=
- me###onk.mo.cx/vSgPqfIKcwC292+at5imQ6ngOkhWftEcE9JOwnqWdd/OYE80X9iqzC8pxldn/FlE2F+J5730gbjs4QstwFitUmKSJ8kAUymXrMI88ekwgQr1kqt7fjTNA7vc5SzNAup30RC8iJTgCC/xvvEroLRupvq5rYcsTj9glpHTAKfa+/enBnUc2p5/oOPD/ZMZ01QR/6c+qngx
- DNS ASK me###onk.mo.cx
- '<IP-адрес в локальной сети>':1037
- ClassName: 'Shell_TrayWnd' WindowName: ''