Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",xgehpmgv install
- %TEMP%\ins1.tmp
- 'dc####weoch.mo.cx':80
- dc####weoch.mo.cx/HgSxwJuvcVWSXZ3L0AoKtU71B6nM9swD+M8YsXgj9MiYhs0zLYR4qM7fPR699Bd6KelPABrPSZXCqVgP642fSFjYFfsm+CwHX8E0Jb4wbf0=
- dc####weoch.mo.cx/RAirKpagp3kkBTmKpoR/5k3M5k4sw4C+qaCOdVplxj5zc1InxvEaqYFwnvCMVcEkQKwLGLzykZzns0ChOEM3XH1fA9gBpjmJCsSqAIEh0uyQxbCqeowlTapJqnC9PxNz6WAVhYx74cXQrjv1Ka108mKsOH61A4piqvcMaEukF9Tz7ARc/jN9SVEDpBxnrPovYJtuq1aj
- DNS ASK dc####weoch.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''