Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",gugsaxfq install
- %TEMP%\ins1.tmp
- 'th###ess.ce.ms':80
- th###ess.ce.ms/OgisWZQNt6q4scglHfWsaDdFMi3FiIU8sMhnWTUNuPS2R4eetAiFHmsNXx5oEfpmstWbdNnUFO4HW5bYMm85gIKQyo19c9flycfBxl3arJcqWQ==
- th###ess.ce.ms/anzBzBkyG/0NdNDlfhyLiLgNGaCcYdZKwEa5Qu1V+Tr6FgjJOfqiPqbbJlQxKqxGncbv1nnUkFM06zPN5QVdbLzHcUuqCtiXYUNiEq12Qp/ER5GiIEuLhNgYsF7IUhZeFkm7oDZy7vOuQrMcIxcnhr7XCxf24pq5Tk11/NB8kLVDt5sjJ46rA25rCrNIqI3m/FyphCYeewM=
- DNS ASK th###ess.ce.ms
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''