Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",thlruuiplkxztaw install
- %TEMP%\ins1.tmp
- 'cr##n.co.be':80
- cr##n.co.be/mnqciqPpld/ZxUgLKbXMLjzhOoZR/RvCRcgkc/1zCtDG8w2m3pBV4aFMtyY5JsiNnFglk2cdoqbzx/fIjQhXAMPjuo042gbktpHOBJNUbczaVA==
- cr##n.co.be/GOgmVychJRcwQzQbI9ddB2JrLYMV66RvR1Dc3NQNL6Xtnw84XQC8Q2MLliUVBnyn4TITvzPcUv6cCAYAJGSNQUO6pGP5AA/OdZLF7tjdj+YN+65BRewCaCdkJNlzHhfZ2JwkNj4EUkXbg2ABiZKaddJ5S4/bhkElQgKLyvJxi+/MJDglGaVAOb10iwHYKN6Stb9jNI7Nu+4=
- DNS ASK cr##n.co.be
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'