Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",tnuhdgwqecb install
- %TEMP%\ins1.tmp
- 'po###egen.ce.ms':80
- po###egen.ce.ms/AiESDKDu8ZV9/ItMBSr7chbnRSqsU8DJc7toUBU7JZdj9Zgg/xGVHaEO9gnxQbvUIQ6y98UjGwCwIT8z7Vsl9ygsxHTk1MzcavkxAuaAqKs=
- po###egen.ce.ms/TEMeKEOW6n9sQPKGls3ZJCmup9OP21eEslLhg8mu/PPFJPHPqsOo+TpMzWMOJjCU3xM+AIenzoT1qCccGXaVv9Ka2aZYIo6h51y+p30S26f/BIWVflPTefwq3FRUfZQ4iPgAiNHNvJQdGabmTIRBJUWc3oQq7ilZSxbN+2UVQ2jEdHWXeNREzYlpAQwOvM+KVqYJt+K+
- DNS ASK po###egen.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''