Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqmryujwnsi install
- %TEMP%\ins1.tmp
- 'th##s.ce.ms':80
- th##s.ce.ms/yuGdFOJF5ePm6ejgGZ0ndinchtCo+BYAL5xw9V2N7d4MiiDv7B2PcGhN+7drCR7xNMjOHMI4qBlGiRheNTKGJtLwSbgttJDB+VgLgoWoARYYUQ==
- th##s.ce.ms/xOAyWCxHAGi4yitIqC4WgZZt/PAbAt9wHbk3ZDliwEuhCGKe32qRFM2HIovzNhsdPVy2u2k6PD7hz96IOkqbtdWEQeHliUTb3hbca8hz7ZcaKOBHhGTlD/YrWTQWjaltHSQe7mu7FkMzYhXe7Arw5p2HZnPhvAsfAuvJGbJa485a/3aC2IcSfYGwkEkp0o/uKluspGb4gmM=
- DNS ASK th##s.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''