Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",slrfesdqdw install worker
- %TEMP%\ins1.tmp
- 'pr###o.mo.cx':80
- pr###o.mo.cx/yLAdQIhhIiH7/WM8U/qMbyHL+n2nVGBSResvyvyRfTbGF5xjCEV07ZNDcprbOe75KTheeSBYF6xSwg1xw1lLHyqjFW+PHT68ULgk5NTZSYE=
- pr###o.mo.cx/zLuerzyW03+s3ex6yjrp3/zFJY+N6Uh+qh7rmViS3pG+l/ND9ZkW3OYM240oZs0GaewHhQI/i26S9fMy28VVyzBtKOuAXWI8ysmHULPzkzHKTRmnR8rDvh1Ic2ZIz/IMSuuxd88tjQXx28mO0vm1pFx5DeXXYQ6PTJgZMVoa8oUDFrseNIiIHE4f3eT5Xud13qGw13On
- DNS ASK pr###o.mo.cx
- '<IP-адрес в локальной сети>':1037
- ClassName: 'Shell_TrayWnd' WindowName: ''