Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",stlqoaixvvymev install
- %TEMP%\ins1.tmp
- 'he###eh.cz.cc':80
- he###eh.cz.cc/ICuCDzIoyy2lonVnuwhtc9RRRmG6gyOaNDyIFioTVnYA2+Agqtkj3eday5I2nxfYc59c3e8qYhrKs4TuQBB2cx7TfLjFQVB6mcJULh7kN3s=
- he###eh.cz.cc/JrxSJNfv+nrTaE0rsZgJU9U4t1DRY7AiSAiCYCebgGGO6Ffg78fdvdTQaOteblcTLaPlM4wo2Cogqi6Ca80VF8l9G05M8otszcMGn4u3KcPU3rVsS5AHUbSHpajzUH+dbnEyhjugqb0olt4yqxkUoXFvRXN+hRdeTJ4/GZ4BU8MSFXRJozDRX13JOUBWdXKQ9xWVaHJh
- DNS ASK he###eh.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''