Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",yohoyjvpy install
- %TEMP%\ins1.tmp
- 'ho##.cz.cc':80
- ho##.cz.cc/sTEckVRpzTWHxHyzsUobdtCpAZfCh2nEzlV7+S42fHLtStZ5FhvtSqgXTb4AWdW6w9W6VH/7oAU12OdPN6ajSlHpjD6CWsGEL5P9wbDJ3CY=
- ho##.cz.cc/jmMNWtnnSL3O+X+Lzv6dNWS6iidkY0hS6odkCNQUZMAYI8ADwqv1ooNsbvW5Vg0lDaNEj0R9P65uGBk5VlRYNkHsuD1wtgnnBW27NObewsic4m0y2cf3J6IMSanDSXPNPrOyfSr+7FwuTk+DJ7hEwn3dc1DNROsmjVlF9KYiB7OLn7DhOhjumkKSvqMjxdFmJV1hJkWZ
- DNS ASK ho##.cz.cc
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''