Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",neywywnrbstt install
- %TEMP%\ins1.tmp
- 'el##e.cz.cc':80
- el##e.cz.cc/GMQppWiG+hZXsgVso8dhCjDZrlXYNvZbu/CAicXnjj10SlK7CvQomn2JUvaNRW1twhZadN0vQ5+RYRIu3rfZAA50oZFN/ELfgJ8hN4JmW5frrA==
- el##e.cz.cc/teXahjoDNtIhLR6Xww2kXvu9Lm2N1oVXYs02bUb6+j3BYgT45+71ZGYRVCZH8dvM5F3ort05hnSmnaSgqkPSD1jh5iStsZg/kpB/hbY4Q4ESZmiWStaLSXT7kDrFjKeSLEdi9GBANASlAkeqgwaMGmhpCTGX1pe+aAIxGtGfQrlFAzZmDvoGxxnHAy9WF+tgMXsKkRjrrM4=
- DNS ASK el##e.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''