Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",oinpldtiemgmdne install
- %TEMP%\ins1.tmp
- 'sa###mps.cz.cc':80
- sa###mps.cz.cc/yrwORKdt0gKu4oAbRE/l7zSpo0F7nZjrPRfCTEBkzYKsHFDD1iF45pV1SRkiMPYDERBFGA4Hb9PJTOlMjytK/lLc5EE/3/3DGtNYCZFTZ0E3ow==
- sa###mps.cz.cc/jRccnpZYlVqItcDXV5DrdMVIHgU/0xRUJ2KWawOT4jeFgXzvbczO6lIYOd4TX3hGPe/jQEK/aEYN37aSxvfZQ0oi5A3ikbUnoBy9pZA/tZlEMWcKOvJT9DAJ4BN/PelpwaHHfVGLEh5tW8OD4MVVo4bObZnBD8rZp7QrgQ2CdAZ0Fp1hhLkexr4nNeJCE6Y9QKMizNeuois=
- DNS ASK sa###mps.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''