Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",zfubgasokzba install worker
- %TEMP%\ins1.tmp
- 'om###h.mo.cx':80
- om###h.mo.cx/XnYfIklVNfmaqq/5wM2a4EKfBmVi6VqnH2S1nBjO5vmFxI/g/FE0GL5WAbF+leuHAcayny9hl0kcnFqzCVusOFmMZA91ocISYdzUj7SrNbY=
- om###h.mo.cx/KHoMjrNaG4Lih34JvaGIqTerq71Kv3vm1eVkwAWec9QdXsYlalisoDueEtNuhKBRKH2H9zShRCO62HY+nW4hNse0NaKXOKkNZfjJgrHZf49F2mFkNMg78Jd56NQE06Ge1ufgOPd3lEY4BSOq59Ha3Hi203Y0ZRO8LGaJ6i85chKATiIp6hJcxAps9EKpQnxVVVcJEuSk
- DNS ASK om###h.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''