Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",yzkuzcfj install worker
- %TEMP%\ins1.tmp
- 'lo###tt.cz.cc':80
- lo###tt.cz.cc/LWgBacMn3/tV9xt0jBd/zDvaG1QZvg+qQ0MT55W2tyO+aGB1BDYZREmTiTGhegPZn9DCH5aTdJF/7yFMeVQmmXAaV53LPEkCV1EXOIRHdPM=
- lo###tt.cz.cc/LMcldCmFkTsQSa9dttbpvbUi8EZJQOf0Y1KwAchWsbg2kCeByil75jD+vau1A8T6GbJnfbJeJa2kEo6K0vQEqYOFQVSOua3h8zOxfBdmvU5P/t62G+U9uYxtJY9nZc9mNIlFS8t6qH5Qi79QuRWDhSJ4qcyb8Yo/FQhlDtmJHFsazRoUJA5mijbUV4jaQXw9dzM2gQ/y
- DNS ASK lo###tt.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''