Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",xshtnpdcbq install
- %TEMP%\ins1.tmp
- 'he####ollo.cz.cc':80
- he####ollo.cz.cc/yeobMnKhzf2G80ayBwlCftLOR0f0CdQqaOyvQSkETfXYRz24Yp5TtebhMIhgcy8wsBQzVLTGy54Pj5NTcsYytKaFZU45vPpCINY+WCUxkCgMDg==
- he####ollo.cz.cc/UOMlvCwJvDHm4LeEBHHUU2lGKD4uFRDqV5QCQwgxhFBFgrrj+OhY5UofZv3W+DLgdxzurnLmBbqhwKfMP/M+d/4U6Sn6Xsdt1hw8Tz5BklJ0WMM6K+SwaHNOlyIJHgwNKKXuIpedP7GN7sHHk6/WYv3xxRdJ8MMSnPnZlwHTYsDW3CWzOIWm+VTBGyoItv5tL/XZZYNYB54=
- DNS ASK he####ollo.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''