Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",vfajljqyjdqxti install
- %TEMP%\ins1.tmp
- 'lo####whoo.co.be':80
- lo####whoo.co.be/yZHRFkbqvCRvu6XKejKLHJt+/asGv+c+HMgJmY4w7chsPCzAuk5BToHxG9tAqY+hzNWpzx0rk7UuLMWQenZ3D8P3geIQU5oZ1K+xToGsl8haRw==
- lo####whoo.co.be/NHiHhmAutV1ZidLz3LutQot03tejUxCeG/8WTWyY5RrnjkFmXG69EtNEhZM7fvbbN2KM4Uhf/0ZaCDBGUQfHDgt/SSHN6R12t2R73aW052vzZ62O1kthe6Bf/qif/eWc7Pjk/bQKn32m6gTXpT0NIlWekKfwO2kGxsQa3vyGFMNFiISDPOLigtNKOqTMGTnOxfDwZY5nS6Y=
- DNS ASK lo####whoo.co.be
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'