Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",kqijeelfuze install worker
- %TEMP%\ins1.tmp
- 'sg##t.mo.cx':80
- sg##t.mo.cx/pysdNwPTndBImHjhGx58qXJrrvef9FYeEzsLCk6EorY7IUYVJ8+RW0lw43Bm6LLN8qYiW1PcwNYdqL5ngmzb3k7fmtbgR0UNPj3Or++/NZk=
- sg##t.mo.cx/QQSjQkjpiUotR1XbADHU8CTtjUFLJI1YDISzHVXNiBbE/gI3GN6aRp0WMaaCwgn1r5IeWmk/upCQPYqjYsJq1n+fEIvQzn8j8toKgR3aSicx9dm2KLorz0Zzs20zchRTIa9eONH1Unga0DTuJNx8lwGSmhOToltt7aNlcqIcU1XKhWf2o3xMTbZnNBovOOyj++JYU4KE
- DNS ASK sg##t.mo.cx
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''