Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",usieawrcyq install
- %TEMP%\ins1.tmp
- 'yo###sach.cz.cc':80
- yo###sach.cz.cc/PaKDCHqzUkveczxZXUtxJsudG3BZechJMgfjchTG0UFhhYpJyv0a9g7c1itIbRGPOmCHtSXfnyFHGTc2qHxaW7KitesVHRJ77xfcKCRjl60=
- yo###sach.cz.cc/vLuinsIYQ/vCzFzQJy1rzUc8zL51HgXOvn1HSm7FHeexqtLdHZFHDgdfG9oGi58HztB/8WDY1FOPG46PXI4u5xN43TMwPevD1wRgtMYH+CmywI7wrsoU5yoIMY4H+BMbmGwvhbFVSRTL42fx2Cmc4Gpe68pEJRo7CM9tDMkbg1rHjpPPXVc/pgNThINC6mKOktIJu3Da
- DNS ASK yo###sach.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''