Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",nenyvzcyq install
- %TEMP%\ins1.tmp
- 'cl###oer.cz.cc':80
- cl###oer.cz.cc/IlBqUtgEqKscD1QRWxhDLXys/cNkML5IRynVeClojaHWiiALUNahb0apZZZiOjPgpb/oMDIK0FIXM2C1d8iJBonVTGPgS/cPfbj4RjCrNL1PxQ==
- cl###oer.cz.cc/wJbPGQIsaHp5CmJfM0Xg8hSsBJKo5gSrnYckZyZuD8ZLgwqlPnLeetetxaKqnSTFFiOtbGZ1U7JI9Lp0FBYonCr4dPJZThUGZYfsT723gDRbUUXADO8d34YzXJfDEUyPBPLUI9HdxbGwnB3TcixLlz6Tm7kObiYQf4tv8W4dKeJB21YUUnSNhBqmIM21S0DUvG6l3jYDFAU=
- DNS ASK cl###oer.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''