Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",xqjtifcdiwi install
- %TEMP%\ins1.tmp
- 'el###hmoo.cz.cc':80
- el###hmoo.cz.cc/lrSHWCmxV/Oj9D7mpe5YvWNeBQi3o8s3ztgTM0F84Mn5CqalbUHUz58E6CcyapY+iBLpuLsX+VxeoQdDVQHWbdtZxo/xQCGdqkuvp3cGu+7Bmg==
- el###hmoo.cz.cc/YYbGRjZCyyGB623Tr9N+2QDUpLHAOW2SI678CjJlfhKj/t4WqYrost67qsYX6ip/1u/F53AycvFGt0I++9YuxgtAIJxYGHScehXaHQjpk73Z96NcY0XEjFIE6TA/Em7/3Sa4/esLmZwDW+PZVNRZ3g0axMu1YbZOK2tQR2FikXMBvXDKRVTQubCV3gBfR+x3QnfT7tjgGf0=
- DNS ASK el###hmoo.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''