Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",tbjcuymnbt install
- %TEMP%\ins1.tmp
- 'gr###ey.cz.cc':80
- gr###ey.cz.cc/RqWYhLiHHtz5pYLAfR2+5bSdasqlTX4ieN3COoXF8GAGrkdsp1bi4ofA6/ixnW+JADM8D/IixWbZn1OgTM9RgwaUNrBYrpZHlmtof2KL8hob7g==
- gr###ey.cz.cc/ymKBzRxcyaMa1S+etSYH3tKsy8FWr62cLy4LLIfo0Z0L5z5sci3Kyk8BpfFMaNn/Qtcch7exwaSpEd5Pf8Xn2LyzOCx/vX2Vrzav+/LSJw8Zyv/usCtVGoShr7BDO7fBzxQIBTxIz9tVj8wS2zQfXcQqbP1KlYlTwUaWW3Zmdmv67Tc7GflPwpLZ7gAy2wJqx5CXHs5N2AI=
- DNS ASK gr###ey.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''