Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",vfajljqyjdqxti install
- %TEMP%\ins1.tmp
- 'kc###os.co.be':80
- kc###os.co.be/JmmvzhtjhSNCuV79JswVeuQ7EnkBMUKyhqocfEFA2G9LMzigqDxgCFrT6MLHkC0dv1jTFvEattShpnW4io9WrmLbLpjavUgd94/fnXAO6uQl4A==
- kc###os.co.be/YTUzxrAxb58laKoOfBg9jsNyXBimcidTbDN2yiR1EodZ1dnbQ0mN9FVNAvqY9UltsfdgDH2vzyYCwSsZNk70JKJIPCQXC9fwFQ+6qFXP8q1DM3EzyVskuahkQo69V/Eky1DcR8Gt+2xLQUAcjxgxg7XHqcSDsb86x0dqKsMRooFQkjpewKkfG8+79ZIZ+aUn7IkWe1uS9Xc=
- DNS ASK kc###os.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''