Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ijuqntdi install
- %TEMP%\ins1.tmp
- 'de###ge.ce.ms':80
- de###ge.ce.ms/tsjEpzFQc05Lzsh2OdEz1oyXoJFbQFaRDQaSPdUiC1T+3pN81z4wZEcDV/e9/jcLINW/QaidjlhyaJtWGlPpFqazHExSvS90nPkmtSqWWtKZPw==
- de###ge.ce.ms/fxUOMiOoYHAh/PdphN5GDiaHo6joWHn65XdcaIhBCOQbMzQ1sNqQlXXCO2u1toVKg32vuO5CgXB15qACYZMidZcB7AC3O745z4zVlR+YelQQGAmIPxeHEvcZYf3vduau11lseGd3xAKyQEuvPuBarTOc3WzjX8BqxoGL5swsz7DIgOhhYcWycdX2Mv+bojwxIBqogyRVyMU=
- DNS ASK de###ge.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''