Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",xgehpmgv install
- %TEMP%\ins1.tmp
- 'dc####weoch.mo.cx':80
- dc####weoch.mo.cx/yzKuMPPLg7/l/sxWNLVZg1rXDzxMU3Fs/tHGeld+YsczlDHxFbhrha9hps/E35uNTu53O7s/ro6JZmtPqq4v0M7vCCAHkspTSumeWTv6isE=
- dc####weoch.mo.cx/EpjdyCzL6a3kyE38vfdYlJMX+JpQd26Qwa3sApl9RdK4M9953Dqjts5e8NxLq8d/zBVVTDyDR+tk8vlQXQKiMRMTY8keqCAQnD2nZWZuwlyiJeTrKDAIBzHVM1OSDBDyOuMddG+hf1HSFSwYsOW4CvHTsiQBfdwmLm05PjHtcsiWdkfFuAKSpBaMY6G1irIP/atth4dt
- DNS ASK dc####weoch.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''