Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hfyylkvfsjbz install
- %TEMP%\ins1.tmp
- 'hc###ar.cz.cc':80
- hc###ar.cz.cc/QEpOKNEpVkscIRwHMcvaMRRdKRoo6O18Qz35c4YxrNgCDcRtk9frT3YWDRHcaK7C+7ZObtL+CvfP8bG5+qkrgs/RNmu0QpKPWmGoJzoYODN3wg==
- hc###ar.cz.cc/AkpTJkNx8Jra4vlI0sjW3P4g/gNxs3TCb5ZQrA0EVmUFwLiBiuD8+Ew+asg9DXrY01ttVGV3ZYscbArl5myzlgovaWpnU4VNZVjWy+CUqkDZThUnVPuKB63lmnQngq4ZbzXWsrj6VJIait5rmNZMtWdAeGtHWsqfIkIhAZMaZbMrJ6U+P2oSBhoCYwEK+zZFPj5juQlYvts=
- DNS ASK hc###ar.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''