Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ztsaylfzvv install
- %TEMP%\ins1.tmp
- 'lc##g.mo.cx':80
- lc##g.mo.cx/eqdKZTzZ/vIjrxUgWf2GVM9pY8rxFeLW+mNjHbOT8flxVv7dBu2ieyTbqL7G9tTT3ZQUEqRumTkRSnMQGJbp7OVI0f+DeXlcyzmQlWaRbyQ=
- lc##g.mo.cx/OsFkTkgQEGFp9K4oXmpIJ8AYvvHtiyGQywL/y95kkRrxRsseXt+rRDHDqPi3XATK4w3NvQq2sSLBj1/+RfKWvr5VGQRZ76SVSi/vGg1rxdaZ2wQcHSWQKhj3lyPpieiBw3/k1O++WoRqMahf+O+u5jd5B9QzFbsgmppgRbxVaELDmvdI2VqLUKoQi2qxcDVDhjO0LMr+
- DNS ASK lc##g.mo.cx
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''