Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqmryujwnsi install
- %TEMP%\ins1.tmp
- 'th##s.ce.ms':80
- th##s.ce.ms/TcdukelhFfGiif7umIcLkdA69nAiusTGiXKbSerAyvZlTTS9GUY0xHUdndsLrpFzP4G8s8HGLmYqCxzgYm0eftsEaFqdvIrSlZmmu0Qo4VyMnQ==
- th##s.ce.ms/etqSaoGWbq9d+EC5mW+qlAAiaeVhi2j0KUTdxpQhy6l9s8QtFPYUz9+eMNuGahR7Kc/5BJckWANZ67QjQslvsxmG5kpCmfGXhEPV+go+LBVtEIaIQl8F1BaVMSwz+2F4PTZt9NYAvDQsjjBcHr/Zv/jh64Q3SsHVbItYUX/7DoGF7gV1WntwGLhFCobOc8plGPAiho2RcyE=
- DNS ASK th##s.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''