Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",gvfhqhbcmyux install
- %TEMP%\ins1.tmp
- 'cm###nn.ce.ms':80
- cm###nn.ce.ms/OemyBvOMeUhT0v72+KRqL+ghdKv503R9KtToZg5kS6R7vrNDAmaTaWkTGDcUQQUqxBvyjrinzJl6hEHkK5fwpH1HQWZS7sXAE3KuUkH5VlSJwg==
- cm###nn.ce.ms/geywCwkBLic34m7RPCafd0epZxk6uhiIugZbXZqyqytb94Ylpjy9ozKyMxwvq/aPVCfxFw4mNsNRXUqOflgxeX0vwok06vTujdF+ioC1vdhlzw0WIAocYdbA3nBwf3d8FiKivPa8b+UzCV4ov4PU+OYUX6RBV1ayPLgpXHONHy3A1n4hh2MEo+BPE/Skc7T3CHu9mjfd7w0=
- DNS ASK cm###nn.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''