Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gugsaxfq install
- %TEMP%\ins1.tmp
- 'cr##.ce.ms':80
- cr##.ce.ms/qphtVwPzSe9sIub7fI64DTZBAplA3WYE23l6m6ejhqKhU8J9QfSdBQ779mWenc9NFFa6Ljrf3a3yHczCwKlMSOYRMS3InheaM2ZGXysOfgafyg==
- cr##.ce.ms/UAUmsTWjPD+pY51+TGKNytRfuVd+lO+/PXVM3qvxN1ZQjd21ZNazsJKO9nymGzcJ8G8obRQYsx6Xr/qHpL6IB1bwAJVOfB98XJaY5ISbxXGAUZ3fWYsERy1ushT8kPaw0Lm4cSP0Tqem4v6csHvaaXroeeDENCOp+C13xS3sVJFUcaEb09jN3kMTnp0RUEmnYIK46vUxrOQ=
- DNS ASK cr##.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''