Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",yohoyjvpy install
- %TEMP%\ins1.tmp
- 'ho##.cz.cc':80
- ho##.cz.cc/xtjpmHaBLebfsnlakII+HUOlo3N3fCPtcnFHR9JbmzeJTTS1R9W/AB6NZjNDnAMJSOxXicAZE7r87FaHKmvdp5QU66DRHHxlMK71jYz/Jj+BEg==
- ho##.cz.cc/xYGMtToAHOvnN4hHkSYLsvKhpMHVhy8jE5EW/TzP6gBr5q7EFPKN/LJZr9q3sqgnjVjhJxCCzlzxFYUjLVskVQVzhqMG2MN/Q+Qyh2g29RXUwc/kKfaUrUUnzSX2vRz4lcyiL+3ZC8glpHIC/UB8fH4T9cGOYJzr1/G8brgQyScGsP/FmXJFkMFtmLi88dQOT6tQYnA8CH0=
- DNS ASK ho##.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''