Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",thlruuiplkxztaw install
- %TEMP%\ins1.tmp
- 'cr##n.co.be':80
- cr##n.co.be/QruhVABnadyYIPtyRZMZoUeZk1MIuEKwxg6iBwT1AjeJp3aHHjMwEqlblw/8IO7zue8gU9DJdQreJC0sgXAf7Hr3osgfgPSn1PWNP4edKH9Aww==
- cr##n.co.be/XSmHmDkK9Mtpgvkw+oNb5Ch2x00yPH6OnOVbCDVk4hZ4YNxnhI+vjE8QTPE0TMbcxU4yo0tV/TUm6l0bZI+he+uwzx/G3YAC7huAl6O9+5yj0GTxsfoPiUdal4cj3/snWANuQdGQmJ6eT5JLuty4MA/66poyKKsRtJvUPk98lQcIy/aZxHCuOLgNhZ+eicrCH32HHiffsVY=
- DNS ASK cr##n.co.be
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''