Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",qcgyweaxsvdswe install
- <Полный путь к вирусу>
- %TEMP%\ins1.tmp
- 'th###s.cz.cc':80
- th###s.cz.cc/AsXXnRaWn8tBX9Cmbls68w8Qq0VaIHb5P27ih3TyFZ+Qc90GtghMi+7xp5OkJzDuklsYIfrXsCbKQenIVLs5epCHn6Zkea6UUeYSLhF8zTg=
- th###s.cz.cc/mYQjWjqroHokM719pa8Ny/Fc5QnGdL9kMdHiIdd8NvrIYPTLFb2wbMbITzxKIFaOs5l+aKgsWNMggv4rnxCSyuZbc/NnAA7mw3Lr9hYnFuVHhhXcNK6O8lAIZfW1uLQt7PEEh45LVRQfYoXbD0CoDV7WE6xKn4cjrS0P7Joctaz+XcMzFq6VAo+eawpVq3AzGJlx3/Ko
- DNS ASK th###s.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''