Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",vfajljqyjdqxti install
- %TEMP%\ins1.tmp
- 'lo####whoo.co.be':80
- lo####whoo.co.be/AYuoAvZAbViXl/TOTne23svPGilbhukriXss0QN4uWJtfu+9sSK9iD8a//tDtQNh4JDnSnQtpi+4mdNehmWLeJPTsEic2WQIUnYN/EEFu8Ou2g==
- lo####whoo.co.be/XkwNdqdwjYbrSodXKs+y1ROsfyQm9WOz1/N1LSrQQMJpVbYv/gSIFEnJLVmCg+SMEWermZLiEvTP9H+RyeoFoYFFThMZ9ch36rg50zuUDoxsnF6J1Nn2vdKJsZPb0vH682HQiiCtWx3dRDq/2r6aqi26H8T8XS7wyYTaqwFjoE5GS+AiZGl/xX9pWyva2cvdwnEpE51pWJg=
- DNS ASK lo####whoo.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''