Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yyxgkxpqsidoryr install
- %TEMP%\ins1.tmp
- 'sa###er.co.be':80
- sa###er.co.be/jMpspbselX3t3OqVxCxRBd2pwBx/kpMbCRzsf1H+cCS/0ROjGTZ2JzIHORgjMMt5wiMeNvFo7DYyckJMNgBDNW9A7khrMMoA4NaG7bKtmSpX1Q==
- sa###er.co.be/wcJJaZyBrGiPOp+JRAtna1KIkK4pduQnSglK/5up9pWQdpM6Lh+LOf9nVfo1H59yg6VXBkSUdm4S2HMbqHhFSh5vdLUB9EzRUAJhF0MslTvNTMQMgu6cUW+betmN3rbzU+E7EfIkePyX4VtiHiTMm3O4bsmo/BFvlqg234r3QtVvhSsJr5vJG5b2ZKeMHGR7+L5fk9qkSZw=
- DNS ASK sa###er.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''