Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",ucuqgvxoevm install
- %TEMP%\ins1.tmp
- 'to##o.cz.cc':80
- to##o.cz.cc/IQZfYoGyWZK9CuYMmpH32cxHd0ShhLuUSi8493bNomkIl2JH3IudNnhBHSZ1P2siIhmKohVepZSTdrm3D+pSfpZdNtQC0vwRig3/cQ4bfSQ=
- to##o.cz.cc/GIgsGYnnsnvr1+yTE1rPK8nNNI1+ATJnsagKhqf9G2zWVR+vCWtG/4e0aRjdmy4HV+22+W60SmowpcIVgLRgS9MsMpqEQItfLAFPCN5u2+6g5VhyS21/8PxUFeawd9i9ZLMKfE5WoYCNYqMOvkUItlEDsmNzhYLfKTCkWW4lSGqbZ9vFfl6XXadNheFIjXQh5ORp8mSw
- DNS ASK to##o.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'