Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hobnamkxtx install
- %TEMP%\ins1.tmp
- 'po###ho.cz.cc':80
- po###ho.cz.cc/UeWuHZTbMia1lCFFHP87pO1en+CwwUwxTvcaZdtGy1WkTubxChY7k2XBIVPq+HI96PZBsJud+RrRgsKPl1131db/xvmj23YRKWssdrlfJPkdow==
- po###ho.cz.cc/spFpLTGaRc1fph/azYqcfPvXzXobvX3aH8YFAjqrWJzgQIr+TVHxEzqySYcPaVYq7nl4lRqQmL/etOZyd+c6wt2XzlbWkiHWe88SMj5wlPMbCNJMQsHQ84zdRFsvajKrjF3AsDfx3Yeuv70IWD2M1Q78B6WuC4jMWJoODlkfObwb81S2jeu0vtUGrlbUk45gq0gHfSra4Ko=
- DNS ASK po###ho.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''