Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ztsaylfzvv install
- %TEMP%\ins1.tmp
- 'lc##g.mo.cx':80
- lc##g.mo.cx/EjTOocFiAeka3wCIb7EWVNg91HODF/wex3LEGgLvYaXRZcplwuuR7AV5hkfYiDbHnv64qg+JW1Zi/nQxOyns1GmhieQ7uvfu5TTt4bkhFVY=
- lc##g.mo.cx/LxwiDUWroFgLiHu8gIOztvgzfrifBN2Ylt6lyNN0ChooEjNcUoyZuZ1UgHF9iSbgjsGab9WZW7UG2KLtsknndevzHoxgC2e3plf/JzYIkLF/CKkCcrvbqLQi6c55f4RT5MFnGwCbAbl4aIau5NPA6XWhu20Hax0dLTowIO3Zp6KaZrupucpzRX991ajydlhxxUWwApOy
- DNS ASK lc##g.mo.cx
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''