Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",stlqoaixvvymev install
- %TEMP%\ins1.tmp
- 'he###eh.cz.cc':80
- he###eh.cz.cc/CxdlMBPbwvVYSx6SrPRAJwW8z7klDOHOl2Ua2hXkrAZy/SwzJVegnQEyCR5ZCLePqwOBxfQVFzOdc92JvDEzH0rEq5dr5ujFfPxaqCxWFGo=
- he###eh.cz.cc/KJIbejbCew2sZP+1UMLX8HHI3g4YKkU9TSITmQpaGqCBmII5W36eQpVM79unxc3khvXQUs9Wjwtt/NWpDnHkRsb2SoLWwvaC8k2l60ZqDfc8Ve7azLEgEu8TiScyvc7sMzpYqxKERQSnD8TJ+YM9LvWs3XZj2ZHR5E1tsnQslj3alnhDeLqw+eyrXB+t2FVe8vWiqO7+
- DNS ASK he###eh.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''