Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hobnamkxtx install
- %TEMP%\ins1.tmp
- 'po###ho.cz.cc':80
- po###ho.cz.cc/mbGefqdjjb4EVvUvGH+wXQGBXXParA5iMTK/AbOpneZ3v+wiKaXFTq1OYN4e6bi4KPGCoJpg0VZXVsukPe80VE2xl3lHRcyOoXStze7Zh5NXbA==
- po###ho.cz.cc/jRrUKdoN5Jht3oQx4Hqc1tGq27sf5S3n7zrFyClYaWc9TMyrkr4Hg350Vst2t5tPennmRjiR+fTFOfl8qkJhsWr6cCLjZxAwP1bSz2lnB+5RAdmyunOXdgwN1o8g75rif1d/ACDrhF6tM7G+J7QJqyqB4nUS4AGzcVFUHVYAouolA5+yzYNGugpnBTvJVMAWGQMewU/upss=
- DNS ASK po###ho.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''