Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hobnamkxtx install
- %TEMP%\ins1.tmp
- 'mc###poe.cz.cc':80
- mc###poe.cz.cc/QOJfUwqqO2e01K/F601oZqpEMyKPIFyHIyT39PgD7gmHBxvjrQ8WTwwFM42ukvcYlpg7vWNTIm2hRek+8dOLNzD6qdqYae6Jr3qnDYiKZUJJjg==
- mc###poe.cz.cc/FLIYhTvVPBxoR1AgGaYIOd6TIUmR8t7emA1JebnTV9eg6Rd2hbldjEMUIg0z6P/RNS9K4JAo7PPZoEfYsRTFBZfXRQuBTAyThYvm2KyqEHNm8FQgMvyFoOIfxcDl4MhHdTAXxMiYaWeBPScnJESsSMVW+C4eJy4s5roDyHa9IzzDQifC6gJK7cr9GHZ224mZty7+zcOoPEo=
- DNS ASK mc###poe.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''