Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ybjsbfpxmf install
- %TEMP%\ins1.tmp
- 'po###lo.co.be':80
- po###lo.co.be/VOVCFYbmgkqc5HFxf7iYe1EGWyWVHjINLwhaulZ4j1+/7nQ7bznMf67Z28fEmZp6ZpzchmZkPy2srNWhdckyUTDwqZSVJSe/dkZx38Tpdm8=
- po###lo.co.be/QakClEvJYPTJ7qOkbw9+EHL4O3j3qKBT1aKZIYIgaYwq/UhBgLnqkYUMDtkdx+fUJ+PbDEVUPl1BuK8rpzoRKv/zwRB2akrLnmNE6wEOO6Y81AlrZURP2n2D6bW2JsnuHYRnf9sr5nvsfGjYCZ3q0f1wNBfK0kZiQBgnfdzgHAQnAHPbNTQ1SGXY4lnKYqJAHvEZ857q
- DNS ASK po###lo.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''