Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",vfajljqyjdqxti install
- %TEMP%\ins1.tmp
- 'cy##r.co.be':80
- cy##r.co.be/CTwyfdgUtkVx6V061G1Ja9PADlSwCegiGmDwYJgYBeEKkPr/I1Hk8GCouLUF1vatt6F4woxwTNielVVv8zrrHh0tkBmQtDw65tJ+khFF42Om0A==
- cy##r.co.be/fHXmsTdBFVKXbSZ5yyuy0AfDD5au63auR0hWRqszFYBAU42R/QB6810O+R2e0NE6Ys8bKW0JqFD/1CuwTk6Bl2BdXigU0dy1rXNcG0fFdqaKYTpKLp/JhTb3VcpR3Lii9glTj9YB3VKbVPpkSByq7vMH8snhLS4R9cqNuKG4yllU4LO+fZOoJViDIu5egUsQ8l7o9V9O2aU=
- DNS ASK cy##r.co.be
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''