Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",mwnpicox install
- %TEMP%\ins1.tmp
- 'fr###ns.cz.cc':80
- fr###ns.cz.cc/NpHAPcjMGKNPJrKFkKLpRo0wzggzjjD0F1mweMUvENJtzLZ+1pOIFlKc2ZHcBf9VNVkPstj4cB3xfyT2T2UIIb9xmHgs5Rvj/rA2KCBxpE8paQ==
- fr###ns.cz.cc/oSRinteDddc0CSnNZEufLHg/6P17vBhUYMFAsKUy/RZbNmzTgZStrYf2M/mWQjZ9AdD5V/jr6isPlh3//QBE4z+p9VbjxMwlWYtaEidZyAgp5PxzMqfP5pmqIIKcMoKYacpzoSaMW4bvNbnWByqnRhZGhcKKW4Q//7sjwV4r7sh1jaarVHEPixcfaSXlAhTag4Xa0Iq6VGc=
- DNS ASK fr###ns.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''