Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",neywywnrbstt install
- %TEMP%\ins1.tmp
- 'ce###a.cz.cc':80
- ce###a.cz.cc/KwpZjmCgqc6onWWj5Kq2zMwM9jOVZP1xyE3fUKKGRg0EauPYZWrL1qOq3AWtOeYfnMhdE6y7dRpR8sQzXeKfy9twA4Kj4OT8uAVJf4WYWGH7Tw==
- ce###a.cz.cc/THqstpIimPStkAHe/TUgrLBmt6PjObcZmWSYDuyfjfqt3WzXz5+dpksMnvY7TY4flk/FYXIkKwZ0+PczG0QzkV5JjrRgDM06PjVXItdkADvEPiRxKYxaIwmXv0NwXaA7o/RPsYsJqDFvw36mBLCNicCWgmlMkeQ+Z0NIeWGu2RAxMph0Dsq1fZTgf3xtVSMC/yAzwfiFhuY=
- DNS ASK ce###a.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''