Technical Information
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",obonrruaurtkq install
- %TEMP%\ins1.tmp
- 'fo###er.cz.cc':80
- fo###er.cz.cc/ZuCvlOoy75F8YmmmosiccWW4/Sn9WgkVva8ilFJAz4mf3qd8JUaX+E8b1BHyKrf9FM87FeDxHM3sakZQa3nyAuzWo6ORdDcVvKqhmn2YaNU=
- fo###er.cz.cc/VdunNqwuEVgoDJT9BJ3JlQyrJOy+ubmJmCnrCyWuOJqle7HsOapnZKUtFjy8izd4xj8XDEV+7938pcksMn+7HdiE22gpZKManqVXoC2Jmyk2agqjkf7MZ9H1AfUkqSsndD4p40GxcwNDso4JpVlFNm+C4wQr4cjtfBB/cIBOK4ZegkPFiVD4K/EMsP2NmK8OJUSg6lKD
- DNS ASK fo###er.cz.cc
- ClassName: 'Shell_TrayWnd' WindowName: ''