Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",vxcyqmijyygvg install worker
- %TEMP%\ins1.tmp
- 'ko###allo.cz.cc':80
- ko###allo.cz.cc/CvpeCoMSkWlcj+4bFqDMenLk/V0UYgScgBBj6y4mRISdUaCoG0FTvD9Z48Qt4ZPjhmZrp3Ibg9uSA9GI6x6KZuMSf6wVAXhv4T6zGX/l+K0=
- ko###allo.cz.cc/ytQNRhkMlr9iHi5VFAX/1celc6+od9xdrSf8NYJlSEd13kq5jsc6HeR7Fn2Fw4WMWHy2sRr+UR/vQJAxm0zWMBKGLW3A/dl9qP2KVzyhBiUnRehpmSEfk7UlOdHJ/I1OJoh5+BbotV1KaUmXZXVgiAzc5464f0nv1XrAVrt6KQxV7sZU0OyRbJ/+D6mdJ22B/8BJgIg1
- DNS ASK ko###allo.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''