Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",xewkhnbcjsr install worker
- %TEMP%\ins1.tmp
- 'ec##l.mo.cx':80
- ec##l.mo.cx/NWSyDeJUWLPY2szk4eVCDTGqe3Znr9BehzMSgT8OTv7cJokL3bFoF+SLNAcIevhgaH1MZzppIiGzvMGRy1d/+TMzJcHbjvmOmLtITeLmlQs=
- ec##l.mo.cx/NzeCfmROxNulB9AxdaSPrax5S/uPU8tsLKWPNJxhXgAxC/4Y3dM2BqxXYMAM0ed9j3pSc2EU3P0p9xiRxErLTUrxtPlXn9QIYO8reWswaz1CI656YPzjNu1yQsUUVuYlvnqP2mdVRenbX+s/5uQm3N8y0BJFkGSm0U0y5XMgc/511VD7lerFq36HUl8++JHR0JJRZSJA
- DNS ASK ec##l.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''