Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",yzkszwbw install
- %TEMP%\ins1.tmp
- 'wo###rlon.cz.cc':80
- wo###rlon.cz.cc/GEapDighviUzn2T6IybuYnLFBM7In1OqA8/fkvWS02NjYh82tLPZ0guyN+M0Al3L1UhYD+oyKOUI8VxqlC6K73qLq+9OdkVnTyQsRSiwjmCHow==
- wo###rlon.cz.cc/QQiePCuFaEjI/GQTarb8vjJCcvEpUZK0v3i45zhLFGQGTPpca/bPuXGNSffL75dzGM4Sflwlj6KFy1nVdci94ZRt/w5yVgFSF8aNHatmsIowlL2nTgLIeDBykGx1/issBYwJmNZiEkNflLKCU/bYK76B05qMZxponUz9GjLwft0jMBqAOrluuGQZPWU+sca4AFU0I7mLtJo=
- DNS ASK wo###rlon.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'