Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",wfhbnelo install
- %TEMP%\ins1.tmp
- 'fe###ll.co.be':80
- fe###ll.co.be/NKfqMzgf2SmoRWlH+XwUc+/TSM2rSesizsRalsGTCaaSlKel/aobs7vcQvz8UgssjCS9eLum78y7Z27bfeUTbFA3ncQUBsK1B3BL4dKKIAk=
- fe###ll.co.be/MtXdbAYtRc4JGljs8uxJl5PJXLzLH6qQmKUhnU7Nyt2mVfFF00KdA+cXM1UNV6AawmwjvJYibxqlL7/9F+6TG7/dUbaGOjfSyZ/VobOf+41O0Ssi5xH1DSNeiDYfZSeZcItgdvmsF6/Ct4XKFtE/+tBwvUzvcDxNRLIpXwiF3JFF8H9O9GEju879DJQASj1nGz7Qytae
- DNS ASK fe###ll.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''