Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",tpmmghfug install worker
- %TEMP%\ins1.tmp
- 'we###solk.mo.cx':80
- we###solk.mo.cx/OKCnAwGfagVUMoQcYzR8bcNB5ONXliITdRIYGpIbz0d5XGJOGYkGhO9/nqJ0ngqGtb+oblCnw2m20mP0MivNBMVjT6qDM553OUAVnvoSmPk=
- we###solk.mo.cx/kbEMurzxPLM1BwtX7H9nSRT7X+v7U42xD+/+H00guc36F55CjBqk6zdurrQo/i5VWgGkbpNOguP80jzYd8Aju7qcj0A5mb+EFTX3tPgl7v3WgRgPjjGK04mmx9kXrx68MiY1lMbyYAjBECypezJzrom9eOYFkGVSSMWzpoCdVSQIz5PCbqg/XxhBxFPX5N5/WDHyaEqY
- DNS ASK we###solk.mo.cx
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''