Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",tbjcuymnbt install
- %TEMP%\ins1.tmp
- 'sa###ey.cz.cc':80
- sa###ey.cz.cc/OHAEMkYJZhv+ijZQn7aUEsMiRFNysXMfkGb/MVHwBfORLaiF1Y17m15Fd8m1N5+xDtEmKMzaCPRhNvbpPCzIFMdqX3Fyu34gG/M8Z5JvAmPlEA==
- sa###ey.cz.cc/WrGjOfWDKj8Lo4RrzHn3QfTwfweaVK9gikKxHos9ozeT276QCjfIixTsaw0bDs7ZdBH2gZ6NtqxNMT0EqeeGyzglEsnidHv0QAvg4drDRs2mA1if5Zz14HzN4HepJzuzWKatQDKOWPAjj8CpdYlCKnUYEawk6DQYt0353bOOKUfHVV4xavGuwgrVLHX32ol0QKbBmWXyPrY=
- DNS ASK sa###ey.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''