Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",metklqbmjuf install
- %TEMP%\ins1.tmp
- 'qe##.cz.cc':80
- qe##.cz.cc/moHOHYitI84NikI6f3csIKoh0wN2zut78NaEdsnfFiTyk2ypP03F3xduGe06nEWixRtoYdXjU1ESs5C0hdhyBZcm8Y2bEUSHjOWYcCPad41NXw==
- qe##.cz.cc/JoACcyqB9SMb4Sok1OxNvvekDaA1QkoNZs6IAUHE1qQYsCTXby/nJk7obK1WrfAe3l8Byq3/bRLeB9Uqyve8OZQhV0JIvfFFY9f+aUNbZtbRgKKnkLntox8FfsEmg86aujZwmltzakI4MkUpRtLg+lVlTA6OcQVWy0rCxfhyWg1d42W4ClBSMg5SkfwaJiXSsMG12jpenUc=
- DNS ASK qe##.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''