Technical Information
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",pcpdtnzdvikhbl install
- %TEMP%\ins1.tmp
- 'cr###n.co.be':80
- cr###n.co.be/uNBDAVbL3AEFEo49uomeg6Ba9oL49H7LCQwc11Hkq2Ps7KjkJxL2Ful1SpTZnJ/ttA26MQthjB2Crp33Z/zixTeI+YdVZnq7zKEBLdMw0cg=
- cr###n.co.be/njNlVTuic0OXMSz53EVOvU/7Pgx3wnFDpXTQH7HM3ALFbAB/j16SijFed9gAp6BUlsy1b1Urw3wHx8Rr1sR4x5lmqbiS42pZc2DWO/LV99YYci+BmrzGUqsQcbFj/7GStRVJTe0NegOZNgwr5yf0Banj84X8atQlAzXrVtopgRusLvOw5Qpl8nksEhiapGUwDIwiqLN/
- DNS ASK cr###n.co.be
- ClassName: 'Shell_TrayWnd' WindowName: ''