Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",whhddotibz install
- %TEMP%\ins1.tmp
- 'hc###s.cz.cc':80
- hc###s.cz.cc/tIonCKDUL71eI7iQSAfLQOr14r9rLPtTAvs6n4YmFG6xTzUYjQMFpOPZswzq//yCqKkQV6YvhQx1p5VCRhQ7he8RBFUp0ZXw/dTT+fM1v7k=
- hc###s.cz.cc/HllEtDUuT9KOBk9rY8p7j8qACZx7DsKzMVNz4gej/nMFRLM1hDmBIYzMJYxTtVEuuAvyAYgr9jP3sYifW9E+1dPwcQjpqi4UL5TT/eFYrGWX58QVTsig4LJIn63aL8tWLngN6ZjjW70ZNdIpk+96gqwSyb9gpw89cSo94h9/uwaF6lzeLNZSgHQHWFzLsDrimJgzIJOv
- DNS ASK hc###s.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''