Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",vfajljqyjdqxti install
- %TEMP%\ins1.tmp
- 'kc###os.co.be':80
- kc###os.co.be/jTKkknbsRktJfeUM2DiS9jYwYz1AK6UkQ38uTK5jUg+J30mGx/HSFZeNt2ql5ad4kCQZWfGhsGl0yljlEn7n91980YsYtT1JdVkkTZgajIEn1Q==
- kc###os.co.be/XZasRSdrv4jIt5UVx1+hzXqToziIYr/DYyeOZr0uTne5qqVhOO035/AdLw3na6+O4irx5OSt4r2Q3R8XoPsjjUjbfWB8jJs8wafq3X9HsEoVeXYF9uR0X6USlcd/NOOrSuGJkdg1L9ibbPT7aJ9ODncvqCcawhgPFEYWBHBzRJzDpdwnjd/aY+dMRbUc223l+WwY8SqFPWI=
- DNS ASK kc###os.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''