[Solved] Code inside this undetectable malware [closed]

Question

Basically it downloads a file from;

http://dl.dropboxusercontent.com/s/nldqctnbvlez42b/******.dat?dl=1

(obfuscated link, don’t want anyone downloading it by mistake)

…to c:\temp and registers it in the system using;

regsvr32 /s <filename>

The real evil is probably in the downloaded file (which I’m not going to download 🙂 )

Accepted Answer

Basically it downloads a file from;

http://dl.dropboxusercontent.com/s/nldqctnbvlez42b/******.dat?dl=1

(obfuscated link, don’t want anyone downloading it by mistake)

…to c:\temp and registers it in the system using;

regsvr32 /s <filename>

The real evil is probably in the downloaded file (which I’m not going to download 🙂 )