Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",buszrfapaddecka install
- %TEMP%\ins1.tmp
- 'es####hoed.cz.cc':80
- es####hoed.cz.cc/yFnKujtZFR+77sctZbYMKI1duXt8Jva55Ggeg8If3ZxbWTCIIWm1FGYzvFGQ9L/eRRmPOjOLE9cork0FotHwMwk1az7daaYhbpKAnqOQHNxcWw==
- es####hoed.cz.cc/RYgPIoZywb8l5oDeg9hcW9M4PKeQEnHbZnP6mk15MuQOTi3uttGGGCCfxnaVbOFCMv0iIXUd/8XxtHzAOUExduXG/y0RHZsViPD8DlQFCAw8fjoUWhtAgyhloQLcAMR94OiZW5heVBn+nHGGQ3O+6/xZ3F9gUBZhj2May4Nl7pJRYz24ihLXZQXFHpwwDswalVnXnuBGoNk=
- DNS ASK es####hoed.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''