Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",gugsaxfq install
- %TEMP%\ins1.tmp
- 'ce###etto.ce.ms':80
- ce###etto.ce.ms/wQlzeGFwkqPSIbfv60PpQaKTeRfsHUVHreHNd0TJDkpE6Xhjvtx9AmfccfPX+04cA1RnmIGgJ7IsCyqrdq1trO3mXEgbx0YhI0tYxxW4PywoNg==
- ce###etto.ce.ms/FkXJAhGOs/GO4Ezm4NMu15K9bQLOsmNj/k1usP+x3JY7C+1Uw+iR8c8EQ5ah24uStZUX9Yg23fk9D7Sa9NWsVPHw17CGc6mIRPrhtpd8WBqjfqPDIYGzoGyRgTCfuL12xE9imuO4rtf4MKxdSHbl4thdsZ59Hql5v7X4s59yQ8OV4/rvq4edwizuL6zdnkl0b0IAnNsVwQ4=
- DNS ASK ce###etto.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''