Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",vzawewzowjoea install worker
- %TEMP%\ins1.tmp
- 'ke###ez.cz.cc':80
- ke###ez.cz.cc/FIvXSKbSF6i9JD1+z8J1Pn6oGiQndeB5LqTClGVVAF7LYYs6ehNGx/sK8VDQvw892R/2u7eoCmR+zUW/9gpsu82Tm7z2DGYH+nhIeg/9f/k=
- ke###ez.cz.cc/uMtCUPtdo8DyYh8sPbuXSo4p79DLtgoeuCemMEWFvWM96Nr3z5YuINi6Xpjhb6Z9SdsZ+18IZGtr0xVh7Nx+ZOXm7U4285bXhfs5paGTUqjDvzxwj9StV+PU5bctitxNJsrpuGmQ4abh8KPw+8H5zr6GuE6IpC8rhTUXrw+uJZ+UshZ92wcaAmLUepnkXk4wBKojTXH/
- DNS ASK ke###ez.cz.cc
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''