Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",ogixzpllv install
- %TEMP%\ins1.tmp
- 'sa####wcel.co.be':80
- 'localhost':1037
- sa####wcel.co.be/ALoMctTpmH7N/+o5t+t+PWoxtgjrTE5M5nn6xks5fZa9kSF8ZpzcfkjFGvKIbK5nRWWzf14GCkQHJw5/x89dvtHbjXP1J6FaO2HdpSuoHuea0g==
- sa####wcel.co.be/xIdVkpmaSgRDQtxKQIe3MEIX8CyREibODVIG/1zQZnNHVdxpYHoWqRk9gdI/tL1FWt0Wyr5EcCpCb6j5ACpdhTuYk5i5oCgiDhmmxhCNh4Rijhk9MukTVp96nGb/h21n/wHoq2Y0djJaj9ZSFkHS2Gg4rRZAMj62poifPKWGUn/tNpp0PVyLVdjx9VpWlGWdriQ9qw0KTrA=
- DNS ASK sa####wcel.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''