Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",tbluckllwqwcus install worker
- %TEMP%\ins1.tmp
- <Полный путь к файлу> в %TEMP%\mv2.tmp
- 'ce###ng.cz.cc':80
- http://ce###ng.cz.cc/PVwgvvlYi0GAQWGdXb0DswE+oH1VAWzFMnn//s8+y06MI6tTlXoNEGPnIooAVU2yJ3gstVuhKpZd5s+it89ufJvskMqy8nb63q1s2fobjec=
- http://ce###ng.cz.cc/DBeNtDSsfhgor4kH5SOhSq7fKd1ljntfy0rFhj0pxOmcUd0Im2HzaA2JAEB6uBfBXE1ZB/4Ck+qu1R2RuxHpwpFYJER5odoz7kJLZXsig51rR0x/FJAkVS0tJQwkDwtBbTWoWuziQcg+5QEx/w0S07F2JWf2fswjlRLZscXlCjOk...
- DNS ASK ce###ng.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''