Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yyxgkxpqsidoryr install
- %TEMP%\ins1.tmp
- 'do###lo.co.be':80
- do###lo.co.be/CeSHFEISglT6cLLtC8IYg8YjI50ICg4QdSEKHg1Idq+cznzZOr95yCOjHCdIHn75VKe8DwSfIDNwfRiNSVtwiGc6xLhtlb8oaJm2EgRzzByttQ==
- do###lo.co.be/WWjFasZlvnZPFpX2YfWSYaeaP4T2Ig5zyptiwcWXo1MMWJ8S4pAyjPwgldpx407bMM58LQjSNaJKhZAZiZr527oi0b6pwbPgQjCydMmYbcf2dJbMQIPcgPYo7OuqCdR5id5tuSEiRwNlozht39xF2XJgOaBu2aap0DfUCjQx0XS0LfxhkJbSxW+IIhfIiIbeavo7YFgBnWY=
- DNS ASK do###lo.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''