Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gfycsostcyr install
- %TEMP%\ins1.tmp
- 'we###el.cz.cc':80
- we###el.cz.cc/AErtVmjS32JbW0U411VMoShJ3VbYycHOj1HjypPwVBNgS+VAI1ZiJ8Liwhq6ln65KOHiVSO09/MXywhTP7xi6Z1pCYZX6qruCxwqpo+qXzE=
- we###el.cz.cc/cOYvigsHCGugQWDZjZdzc9lQpw9whQRzi/ObsfXcxme0KPqiwFg8vhiMtjfPR7deocIDz0tRdopIvUJZd3f5RYuQqzhqs+V+aHW+AqLv6IPmz3meDZnAW7RQ8GmzoorORv76mDadENW0GkdYeVRDlfTiq3GWR/46JsL6FZMvORgVR9n0Ene3bsktVwkiTGGGzYNj3wSI
- DNS ASK we###el.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''