Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",tbjcuymnbt install
- %TEMP%\ins1.tmp
- 'gc###celh.cz.cc':80
- gc###celh.cz.cc/JugYCGVN2eYz7DCFUdlrRG6x5CRdc8nPmpBBwuSfrqGWKrz6hVUpc0tfWCBS72rfIgt/D5FyLMzDGMp+ycJqWZtfdVwLWpAXtzbLOhX9il3HXQ==
- gc###celh.cz.cc/jYBUahVkMK0iFtiAqMWLhdytpFgZoqG6zlC0wrNyPfhVErzlNuzSIuzctob80JRGcc+Qwoo9BKaogR6cGVeNxsfSQbvoD24OG0WeImAKSTzSFhehsyl6wuPW69eOMsSS/4jpS4t4srlExlbvcvlZqw4BM7BaFareoWuj4/yRWRG2ei3ZPZyrL0djJjAKwJd+5Amd0sL1NzU=
- DNS ASK gc###celh.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'