Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yyxgkxpqsidoryr install
- %TEMP%\ins1.tmp
- 'to##e.co.be':80
- to##e.co.be/qnwYHtoXB6ykf125+CcRqBwPB/0RI95egeadf6R4MPNkwlWcvH/vNYrG9BMad6qSx6JGJU8O9CPdfxg2thuHa//UstNFeqAtlMVIjuYSM+cDiQ==
- to##e.co.be/TtmssHhMFGlEPZAo3VhpTI75jftCh6TNBzEG6MEXS88wPNmThbDpwrK6xi2Qlx5/Ln1IfFmvQuAnrRIun6Y+dmEN68WOsDxDgpTpKYoESdbUFflrwg3zrEmluFlcTbjKzPpbuLikRBCw41PhdQdKGZczptp61IomHZYoExMfFjNqJq2javn2ds1YKGtun6G8V6aCROIL1TQ=
- DNS ASK to##e.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''