Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",tbjcuymnbt install
- %TEMP%\ins1.tmp
- 'fr####pelo.cz.cc':80
- fr####pelo.cz.cc/ojPtPbDL5ro4f6fzXVZgKNuMLX4gX2gXf60Y0CyX3WRm1IHGeSfm2E/oXPWOOdSM4Dg2uIdZdQEeBKulAElVE5S1K893OeJsOoLa5tuzHFI00g==
- fr####pelo.cz.cc/IJzGNlqxkwH8Cf2e18YEJ8AEHKbUeytYEE8Ni0vlFl4b4dH2v6FoCpC2uWOmvEGnS0RWmWWIivLqCwqeYU2iSqdvuLTSmwBBUVM00EfC+wdbOrdVL1f+0VaS8ZaWF22fGO9FGihn6DSg/o4Zcp4ILgJuxCziu1EWlSLSQm6YoTiCvhS8Gn/JUmEG+Q58K+EJPSkOShq3qHU=
- DNS ASK fr####pelo.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''