Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",jwegqyayuzcrb install
- %TEMP%\ins1.tmp
- 'so###o.cz.cc':80
- so###o.cz.cc/BKbMmnnCw6BDlSaWlsesR3JjDsTosewdLvXEZAOryNoJxUHvTIlBRAww4kSXgix9l0kLRsAPSbbQPeeMGTuqV6tVkPlgaGzF9m6YujZeSTabJQ==
- so###o.cz.cc/YqppahIqA6+49bCB3ETUEYX1qjcKpyEwwicDRmAwXyJ1dzYPvYMg1J5EfNHMHjrDdfFlA460UY6wJDdrNHTEyB/ydzkR2p4uQJqd9cx79oyRTZITfvCihJTNXlHw/Ug4PHWoGph3ON1vClvqV8hJMDHwo74DWkLVhdcN1HE8CmzGiufrQfpXpWQeYDHImCHSEWVclLsiwk0=
- DNS ASK so###o.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''