Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",tmkphzsjyryfuw install worker
- %TEMP%\ins1.tmp
- 'se###ls.mo.cx':80
- se###ls.mo.cx/HfPShrlQlA0lFHSdTo7Pqof0HAUwDBmujSe1z+YmN6/BZnY1meQa+ZlMmqqJyCYEZBugs83W8Ro32p8a6qj6IL5sBqbUQsOc0bRUKdKYiMU=
- se###ls.mo.cx/qSwLOmchM+XyHMLqDrJ58vNQw28Sui01CUeZjJvpWIIe+JBFUO8y+ulqNPE9bCrZklWWWJUuoIzfnbnRCynSr5UABZo927Ut7cr64yyj/KGXO4ASrcOdT5ErkC/YYAIbanQfFH8K9xlr6VUPrBbPr5M2ONd5Ngeg4tcJNfXeE0fuKpODtzD4Cr/4p8teZ0KztIe7Pv8r
- DNS ASK se###ls.mo.cx
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''