Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hwivwnxkd install
- %TEMP%\ins1.tmp
- 'hc###len.ce.ms':80
- hc###len.ce.ms/FWoKnSwcyxfP2WC3y52DJNelAkZngTDSz4QV61JurZ5UwO2jf8S6UCZotmS7Z0HDXHRIPWTdyZPvOpFv+IBwASic/Uifo09sfS+izypMD/fWsg==
- hc###len.ce.ms/FxVLwNuWGjan3feLG3MgqRwxn7EWkHe0wRFautZjMm/sKWiyzyhlPhIoxWPkrTleWMDB/MMoY6pl5oAGBJKsHDTDKiOoOlBSaYcXH4dY1ewFpljj0x85ftgJXI+YMHJEfFUq1T4yL9kep2FpAIJcfUjYMPVACdfwLGSLj1YgvG3/TwQjktOdtDcNZhlc1q6eBQvishB2Goo=
- DNS ASK hc###len.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''