Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",uvhxdcpepayvb install worker
- %TEMP%\ins1.tmp
- 'ge###ler.ce.ms':80
- ge###ler.ce.ms/UJIrYraLOi2IT7S+klJyAEl4mToS/duNtKaAcr680OQIM99/WuOqz1dqBv7vmgN/RhRyANw8Xs3HBo+gs1K/WzqyhvBfTiK1DKpXDtFr2LM=
- ge###ler.ce.ms/KBCErWbW2QO5wUSIdRqbenwl4V/fHIGzpsvT/5T3xId56TsjHG/NoDhRb6diApsBrqvw88nvcTTNrVLLE65vnl9FYN2ousL6thAbfFK7j2ewX8MGU2FRaAhcReN4dQUsa1NxzBuU5Rdct79E1zENBdxh+6K/RDHBn/ic5HNX4Byn+CeQu+HCDys7zEO8Rd83IiL+Dy3E
- DNS ASK ge###ler.ce.ms
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''