Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yucerutzn install
- %TEMP%\ins1.tmp
- 'he###r.co.be':80
- he###r.co.be/cPFVGEQjotKbSc2v+olGWzOblK2POKgERygZEKbcX52nPHOqQJP8+o/XRPDxJFz6nDb6r+RE3RuHcyAlaBujvBUmsQSOJeU2jPHCGMyVeOyifA==
- he###r.co.be/nXROPNvc1c6gKnbILByrlfa1PcPqmqYmPg6Uww3f87yKdkPEhgTWBUiZrGUVkMiG99uxWdkR2P0fRnCZLjWPelm1rf8I6ZBspA9VxmohweWVeha/PV7gkoWahHHnu5jOkfmdnksB3wp13g6g0iyylv0hYZwzSK8s8wQEL/yGYjdTI9zI7QstekeTz9AJ60v3zALpauo6+lA=
- DNS ASK he###r.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''