Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",jwegqyayuzcrb install
- %TEMP%\ins1.tmp
- 'ro##o.cz.cc':80
- ro##o.cz.cc/opDLNlbyhk/srf3bnKD4ATgtMGtYgI/30mKy9g0YGylujYb0oiiXl40vsi3rZeGQCOt92SnwJOeZriXv020EL9me/kTOyc9ZBQTWVo00apVBZg==
- ro##o.cz.cc/TyqMErpEOE3sQdgQWY1woXrVcj4PhNMEEwVteqX4iaCudJVjShUWAOMZfDt7RNQgbbonYmbiZ7OsnKaauYMl8RJrpCAQnnBG4BGHy9Y849sMwn6NdPtJgWyvbXqLIhq1TlGjjQw3DTf9CbFgeWmlRYo0tjeHxFKClRXiBOUSUzjL5luTvu5yScEmr0vnAgn6Ry5uTupRclU=
- DNS ASK ro##o.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''