Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",knzlvyxp install
- %TEMP%\ins1.tmp
- 'ge###re.cz.cc':80
- ge###re.cz.cc/MVjcTvIQn58L2P0vgK1ppiG1NGvFVrOS7GUCy/7QllVFvkgiGr1z939hy69PcvuxMmpBvNn1YOzZDSK19/yd8re05vf2Tip4f2luBvMH5P65Aw==
- ge###re.cz.cc/RWLWgdsTsTHueMz29utpSYvm0XD6F0CpMNuk7gm7CeNI1H2rmItpn0YY5NuBr/NUvh98Abgtk1G2IYvYLEwEPfOwULN5uIrzfB6I53iM9RdEscFsUPFZJj45GQEJQYhCSnrE8aKpnkvTuvkci8q/CN2NkU2rJlr2DBPxpEjvYIfWZnc8ZA73vdNuPl2CRIBKQ1VrMMUUCho=
- DNS ASK ge###re.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''