Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",jgsrvmgawmdtbz install
- %TEMP%\ins1.tmp
- 'do###o.co.be':80
- do###o.co.be/FdJBHxVgS+OoZ9CHn20zN3fAueeKlMcAo16r5XUS1h5CBs6D40BGIo1SxXA2hgojx50ehXykjViOloHlxknjA8UyLngoPMGCfkl9M4XzhgU=
- do###o.co.be/qHYfwbhJwTMC0L7vo9IpDHq3xx5FywyZ/6jGg0dOBCwzA5hev+6N61+5QAzjjlb+/JNG0QaL4IUe3U8vctVuaZ/YenqJ5ErlQP/IQ1nCa82BILUvlHl32FjN6bVZ1eYgT12pFURJLMsPV1FFOtUfOKIA72dOeKWMyvKf82ozdDvRf8JuCDQ3ISE83g2DZQPeW+KCQ1j1
- DNS ASK do###o.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''