Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",obonrruaurtkq install
- %TEMP%\ins1.tmp
- 'he###en.cz.cc':80
- he###en.cz.cc/NKwmOPBaQQXbPz7hVuOcbfOwLEx4hXCOYi7/gGhF4WLkVk8tNa0z1khPaGicFdeB/nni1kJM2sbLY7cCOtXQoU+v5gVLEQuRuZAhAdzQHsM=
- he###en.cz.cc/TshMqcqrEqmLk7FzFP9BEJ3DumsEXGeHjwPZGtovW9UaZ96eig8UxFuR8GQ6hNgwmguc1msHc5OTxIFQbHJtTBmIzlVYiewIrAINdtGyjXe8zetKbDPkf4+eo0a25Us0gNMUYf1rS3YmiwD4royX3scoGRRLSVv3vBbGAJ9icKPWR8yZMeOetu1IB3FDLAMMpyZzF+hG
- DNS ASK he###en.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'