Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",rokpoodgrwc install
- %TEMP%\ins1.tmp
- 'ee##s.ce.ms':80
- ee##s.ce.ms/gRGbjrRI9g4YlQnl85TnraVOSFxS+EGcbV+fPCxpfM4aandTyK3DvWyDQQ2Gj/w0KAhFNGN/ATDzD5kSASEiTPNyN2hjD5yud7raDlzmoZITcQ==
- ee##s.ce.ms/HkaNzNGNa/gan9mOvrHicqgLxOphW1Bn2a9huSzq+CNdEBSoNt141D3A7UeNX6N0UaKBitW0CXsZ3NUPdkstdKSQZEMJU9NixdKZyZgkEhav4s8JQphouXVvNLmJJ8Z9rlnACa3r57vTAQRWO3gyujVNo+C+++Pae0hMi3N4SFMp5RznfOzLjv8WND40NrXcGvqR313Cpow=
- DNS ASK ee##s.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''