Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",xgehpmgv install
- <Полный путь к вирусу>
- %TEMP%\ins1.tmp
- 'so###llo.mo.cx':80
- so###llo.mo.cx/OGaNJPGSZ+bD1Rmi+KBI1IFPuFf9E6ZNeACYxz5t2Zy5TwtstP3Jsm/caBKAZyTT0O+vK2KgXNC1rR9fHl2u5CK54d+3O71X/2Ya7mpxsNw=
- so###llo.mo.cx/DlWbzgpSZGLLkzB9wyNKO1U+IMXDYVFGY/ZP2EoxqdBZoF19lN9nVuB5ZlUaWp14FeibRHJk3sjF3Y9GwS8SeUhHFFHuhTJLrRdzyfETy/WIQoFQrpzzBUe7kaoBLO4TH9dbi5b8MguCwX+NfdRZDOzCqDFEOGCuFj87zg0MdKlyTJidj6i2mUo+0xzsiBFkBSri2Ghc
- DNS ASK so###llo.mo.cx
- ClassName: 'Shell_TrayWnd' WindowName: ''