Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",mbojuflfmuv install worker
- %TEMP%\ins1.tmp
- 'lo###odge.ce.ms':80
- lo###odge.ce.ms/yEADauEwfU6d+sAQz2kCfkH8kllIqzUxre7IhChVhNHmu6FWLweFSdzuvuMKZrzdjw2T1LLqo1ruAxlT4F+08aamP+sGsOeIqc2GQlQJdprSDQ==
- lo###odge.ce.ms/sVrzKDneoKkiTBGNOZLv00PutTF+tgoAfPXVKjFNVwZHVlQlwKdoYrzftNewXUmR0UyLZU2e6qE9aU+bbCGFKYVTizNFZh3DTZOXEhqb+wl8PqOaPi5FnS5iIXohZyAPThi57t79JrRnoKkPBDxLb8hG8PvMrKrvPQTaa8W+CfrTQfxaVxHJSAJbOgGVIu80twXu6VMW
- DNS ASK lo###odge.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''