Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",zubwdnzeg install worker
- %TEMP%\ins1.tmp
- 'ho###er.cz.cc':80
- ho###er.cz.cc/EEhsmHHUZVu4zyyF9YYxMs6zT8cSQNihq96LXFGsZ8Kkz+Rriwv6cOF29s8ViQah3sCettbeSfApWSW54IeWggKvCTc8OXmJUzWHJDNbecQgpw==
- ho###er.cz.cc/TJWHzaBJZgn3uKCqo6EpIDY3Ht7MgS4PwK1xEmYinnbbpgK4nPfisPUYhTapySNuaCW3wT49y91Axo3vv50uOY4NmWhx2KDPwnzsYqCGAx1HQJaYUeZ+oqNW2IoV2jGHXtXTo9QievGy4gygvjFfBIZ6MaSen/QNKDo7X+HlEnuKRjKqZ8OLgr71vLgvgzCXXCJbRkKRn4k=
- DNS ASK ho###er.cz.cc
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''