Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",ixmhcrfw install
- %TEMP%\ins1.tmp
- 'he###n.ce.ms':80
- he###n.ce.ms/GtvuicoTMJiSocd/kle5VdDivk/BLoWC9GPK8zMd5mNHkcLcLPZVk2VOxA4r0zwH8NYKV2y5NLQea8oXiR0vfGRtb9OQwdIGrwmzk7VZqiPByg==
- he###n.ce.ms/nXBTmzxJ6s7JwX14p934bpCZZFX6x0V7FbAVwSa17lpptqq0MgahaWR4xH6E5L+qLlBcBR8AFcO1E7Ta5ckNBC3wSxyK+DCP35IwQpKYQJmO+dtSRDXhBAp70NJ1i2ZBC735DL2zySli3omyG+FKYzkHgkSr5GoZAkIfO1piWWBGI0ZB35gum4zLv1TRtFszxa0fEir/8JU=
- DNS ASK he###n.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'