Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",pyhkaqgoudave install
- %TEMP%\ins1.tmp
- 'mo###n.cz.cc':80
- mo###n.cz.cc/YRRBZYUUHap/8iS+XHoLzXfHTIbypKkQT4Uj/j5t6fy4ZPzovq7C7xoSSRtGwc8gmHEVueno4+6VkDJ1lKR5SH2Cq1JbIwPj9Jt6M3iWCq91XA==
- mo###n.cz.cc/wzxZRjrFcSzAs1xW5ASaIChtUpYuTpoWrvyK3msNj5wUoIF/oq0HVlTgq6md96+vQ0B0C+yYLvAIebDLtzw82pDoNJOj2vhXZe2oiDDyItm7cqt7LiE/4IJ5RZvt3FgaVRpoukhT3gu8L/yh+SIao55PHiUZg/8j6Rmk3Am1f5cAuU0Efoz5NehLeSkkiYqc2XsmM57+BfM=
- DNS ASK mo###n.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''