Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",jwegqyayuzcrb install
- %TEMP%\ins1.tmp
- 'do###r.cz.cc':80
- do###r.cz.cc/iPJyteCSpEmflPrZ7Sl1gNNrgc58plOenil93mq20EfBavxcqz/uJdvuS//oHXyU8o5NkMte0mcxYbRnL8wEALCkY/7BW5GfWweM20HDnxxu2g==
- do###r.cz.cc/qGzrclGsVqIL8rO19NL8T3VvsBuhHnsVwScHr9I8KsPz+q9meWkLpZuNtmyEjry44b65DKtfR4SDdC2xxpU/Aaba2i3huZdi4eRh2opn361PolAaPt3J+pJbGwhS21ewnBJ5sQWTxJH0A+AJ58SH0XZ7U3ZOIRPzCqevrh8sB6qf1aIJtbRZRg8fnftpyaGJVVXbHuQZgcE=
- DNS ASK do###r.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'