Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqmryujwnsi install
- %TEMP%\ins1.tmp
- 'ro###ck.ce.ms':80
- ro###ck.ce.ms/eJLrTamIWLVPpAoTgzKTXY7QMWl3kH9qqeeslyY3ZYM0FBUavYxVPQiV5cyP4P7mvcJCQCBZwhuTJ2afIpYIr5uTElA+1g8Y54l0hELjtw9JQA==
- ro###ck.ce.ms/rHGcAuma4iZ95z/XM6r6J5VaR39LYB4WspkGFNXl0tIApAnHUX8x3e+pwH5Y+xX3bd/voDf8bWtOfXeLYHeEqr9G7etgTW4+NkIJeG8NDawkrzMSR1pdmO3PoLM1QWH29cAlnWs9HMxRM0YYC6KHGVDI37TAm44bB9Jxxut7ylYQ7tbB86xl9s4gBWXZJES4TjRYuKgu6Wo=
- DNS ASK ro###ck.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''