Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",pcpdtnzdvikhbl install
- %TEMP%\ins1.tmp
- 'cr###n.co.be':80
- cr###n.co.be/CruZZpcNWdyfnvK1V6l1wezch0m9fZQQcG4F1CBnq+1Idstq4rLgX0UvjBhNp2UzMIMBpzxRtcxRxXaTZ53oDMcFfKDyuzFIJmm71vJPk60=
- cr###n.co.be/aumjwogoZfO5VFjUGsEDQR486jMeKln5S82igRjabJAfNvAY9B7BpuAsaRs+TrZm9Li5T5xjO82D4LN38vbYXURFfbZjg+tiV+mBCbXV/TqchINEPYiJnNq1lcjd8ZdPTqJhBRCXszDqPUG67EKTJ7/eAosUNnrnoTuiowqzjICoE94yXozjseTJS5kk7jsTZCgZxHmt
- DNS ASK cr###n.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''