Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",usieawrcyq install
- %TEMP%\ins1.tmp
- 'sa###ach.cz.cc':80
- sa###ach.cz.cc/bSdZKUMcXVvCvmeES/z2v5sqySQ/HNzDeOvwfrDPQLiyK8dNusC7xTlVj0J8vR57xy3YwTsM/6oJfP07rIFMfD4+94weqLNtk2nqF8bWbE4=
- sa###ach.cz.cc/OgoGeHlzwJhVOsmiCRvAUpSl1PBzgYFMWlqgyH0M2vPH9bHrLqnySjsKjm9cWbMekmKSB7cgaowIc8j2PYKcPklX0faWOwbPzNynh/1cpthtbwqSTbjjwNRbyXFdIbDPbUq4ZZ2usIVIaJgzNYz0ieGiNKMJCK+/B4PpnP39sCBFoUP8To9dKd//Z+rBps/S9cOTzLXK
- DNS ASK sa###ach.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''