Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",padcmplunc install
- %TEMP%\ins1.tmp
- 'st###a.cz.cc':80
- st###a.cz.cc/BclmcTOb36rK1P3TmyzxRssPCIBnWo5ZHuOp0mGrgB+e8l4elJLk0h49X6PbJlYcHlV4RZ2n6shufoTtumVCagH/AWN83Lj9O+IUxrRo2YQHEA==
- st###a.cz.cc/tVJfHZAbky6xnubUw2dgwoxdaPG9DwpjoUdyf0PZIDCNciuEQX/LRYfY+3I+8lUifM0+JKUxLwWk2juCv+vgonUAodSSrGYS5khVvsQ0oqh5Fx0bav9/cPPuMsqlzQBnmq0NxbqTd3hjP1mfXCEXASQKwS3yN3AUkKmZxRp/WsshGdqtcNhDNEOYohXJ+Ris/WgxysxMO5s=
- DNS ASK st###a.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''