Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",wvpfmzkdjzwvdp install
- %TEMP%\ins1.tmp
- 'wo###nen.co.be':80
- wo###nen.co.be/FzFVAIptX16zo/XVdzOX+2vNqZ90un5YOL5Qk0M7mytnu4rs8MbBSTiI9LJFxAOwddFlNY/mEvRVKEowMUELqd/0VaKT5eOGCroZ1McKZ9dzBg==
- wo###nen.co.be/jEvsmBNgTTuu0prahrmp2EX8Pyb1rAbDy+hITPoTJ682+2jYjBiNQ4MRXst8x4NqpIoyWajbxIe/ZxH3QYzKHHCiuiHFgXX8STEEg9LJct5cw7mcMnUxsogT/k6EAcFcF3Pg6BD3PiVNoHKvqp0mXiaZHR6FXrXV/tOzD4QxE8i2t4BE2Fe/qskBev+Ue8FN/lOIhuA+Rj8=
- DNS ASK wo###nen.co.be
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'