Technical Information
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",iijpuztxpuwc install
- %TEMP%\ins1.tmp
- 'yz###rdo.mo.cx':80
- yz###rdo.mo.cx/qzBFoELc7XbFyslpKCe+ny4i7OF0A6zTknwvoxlbFsrR6tibqCTYIZEMNUfc4Mg5dHZo54IiQs51bAaBWCVax7rt+82PV7gK7yrOzJRI6R8=
- yz###rdo.mo.cx/prqBTTAM7B8retm7Wy8jrknBGZc++HxECJP6tM8NN36dGVFpjKK/rUSvkkWK0DeU53a3QGIwieq2JywMrWemppnIIm0A+hrgrX0z2arhzb6fRlbQeFZk82PnqM8kCxX5f9GAF/uYH5EVBhssN6VCT8g7lOf41g8I3kM/aghVNbytx9ElqrA90f6XmfcpcpdXIz3RgVgN
- DNS ASK yz###rdo.mo.cx
- '<Private IP address>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''