Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ozauswrvnug install
- %TEMP%\ins1.tmp
- 'ro###hee.ce.ms':80
- ro###hee.ce.ms/WQUzYhBTWiorXC4jyDGk4GIELDC3ho176IIclreUiEclhp/yTJJLZOy8EzocgoTr9nynnnTvHPFbuzr7HgwdDPvfPrpr0xVcMp6LykwzA7c3CQ==
- ro###hee.ce.ms/mpiBNSRUHSzCVzkWKeWW1xC8h5o3LNMe4PcaR9iXNuZz4u/bFXEJiU0PQscEJw32+pO+toBq7k/kwoYqazBr7PhLQKN5UjniRShFdu/PFpNb5TULEA60c3p3PosrfLxGMN67JDfQCSVO5LdXU6Qkj52nP1+4/WTHc5WFl2rAX5sSZeOWmJQTtqiEzMsltMRG1+ZdhUgG3nk=
- DNS ASK ro###hee.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''