Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",usieawrcyq install
- %TEMP%\ins1.tmp
- 'sa###ach.cz.cc':80
- sa###ach.cz.cc/tqgBokCmbNxjDaKWuHWhwEtJSKXaQwHRR1ZrLKCAC7Eejm7k2KgzoJEEVEB/kQlI/KE3bEmD0/r9WnnwNQKqsma66fffnixDeKE59MRZnII=
- sa###ach.cz.cc/znEfNLVTlqDdZesadyL3KDEn28lU39ZP/bhiy/m5UcxXY2mcC+pP+meXlY/eWQhA+W3KXY+1WQjNAkNW7sU5fjWzMBEnzIeYnpoLpAD+XRfAGXovMCaifZyFwDYf/c0nf/mim/dkmI3youEaawNnFJl5pyRYLsmsj6qhu3zbx3pGe3/ROnzAXPswGNkaktR4y5R98EOE
- DNS ASK sa###ach.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''