Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",neywywnrbstt install
- %TEMP%\ins1.tmp
- 'so##c.cz.cc':80
- so##c.cz.cc/MNHalIJAMVh12rd0hiS6TZ3Z+6ehSFM/wnpj0OursvJ/XAiQBJg1TNy+4Uv05+6veyW6dJUc69197VICNb3njji06l/HNCSSikB63Y5OWnI+Eg==
- so##c.cz.cc/OzCApZxsq9XWifrwgQ7Jfk6OyrI3f+fNNyAed5hAiJxWWgeoNqwOIZvzLLYz0WhVazCqU9zGgJFtvgLVB0vyRU4s9/iefapg/bcEukEjRGb6IfWc7XAt57wtARCd4kQUtj2D6k0E+F5uicFZ+N0Fnr/m66MqLcxZhDIoN9D/IcoYgUrB14BhUvwqCgw+Sjn3LhBEpqmZKWk=
- DNS ASK so##c.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''