Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",obonrruaurtkq install
- %TEMP%\ins1.tmp
- 'kg###er.cz.cc':80
- kg###er.cz.cc/CouTRZhCjch5FdR5RT81Hzsnkpm/pvN43yo96uOs+DGFnO5DA9kCa4Fu7cogSBjYyaSIg0iVNukExFVwvsc2AMCvQUOmeQqHHFZRfGPg5EY=
- kg###er.cz.cc/aRYCRtmknlfdB/JdXsQPFZEgMaE26cFFjon60M87P3xZ1aqQhLheH0dnUi/IaMI2UZEUygfyvf9tjZAsVY0ZP5fApeXM27R+jlpAxz7ERg0b5x7LvaE0AEOP4oIzFMXxnb00c6DhCf55jMTh+IkvLY1XuVcBihPL5KNTxlhjJt5wUefBKZTOnnn4rePAR3paPps2Hj1u
- DNS ASK kg###er.cz.cc
- '<IP-адрес в локальной сети>':1033
- ClassName: 'Shell_TrayWnd' WindowName: ''