Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",xncujvchq install
- %TEMP%\ins1.tmp
- 'op##y.co.be':80
- op##y.co.be/DReAepGr7RsqusMEiEn3ZW5O631bwmT9A8hLycYaRzu4KLVQAcYXlc/0XRl/+y6YFPdawfiS5TKK+3orf4b8k0rxP0kzvNNkGma6SyDon1w=
- op##y.co.be/mwOcKbNgR6jei9woXNeWdNNBuP+ItZvktT2cBYiGmWwcWQnMkxnf+bqbvTBsct1mzOAZflWZmJse0HM0uwzGIlJWH9Tt1w/HQRd8GoEudP+jxOIUK6GL5SVH1Gqn0jzfhfZKtFUvgeA1taHfITr4I27I6IeW9JGZ+e0KGHNh3x0IPH5HcGiys1Js93vKCLhjsSyTb3n2
- DNS ASK op##y.co.be
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''