Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",tbjcuymnbt install
- %TEMP%\ins1.tmp
- 'sa##.cz.cc':80
- sa##.cz.cc/sLLivHNFTBOV+pf7yCVMD/WER/PUWzsrXMlArSm9lzOD7dVQPxvZYK3xd4xyo7i8E0QvKe8GJWAIzPJaxmLB65Gc9a2pPZNTNOndaOkHOvnTmw==
- sa##.cz.cc/qGbgfrVzc6mKrqBo5SSQRnEzFOAAbetGu/Rr3vg1ib8pGXxE7oQ+HvH5pAGubVqIHzFb67CYXHAT2AnCbkqBb+C10hOAYtopAPT+v/SjADXQyMUTWlSmww4qAhi8+b/hIMDvoDMRyfN/HwHda8D+BlwJgVnUNW/Bm63hmqTmSc7VrsGr569Dk3lxzH2RqOpcjTyDemS5nT8=
- DNS ASK sa##.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''