Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yibrimressdwfwb install worker
- %TEMP%\ins1.tmp
- 'pl###nce.ce.ms':80
- pl###nce.ce.ms/UMgQUUchKo1BljxIzMCSA2+ntNbLPg06xVmNcU8sbZLPzGSq5RPECJS1CPK07HtAETASZxvdOddu4/XFEkM6KCQMwmw668SUh/piwRbVeA0=
- pl###nce.ce.ms/PYZKhVsvlytxzDp+07JRVgHOkPhWag2FWiR0ES5ThE7jX+eUpNga9b58Z23NGxVh7bQ+Zk3k6fzuDhZ8J0RoIkWMLNkbq0LQeh/XT6IdVIccm3DT00tvQuLq5ao210Vf6Z3foJme5b7ZT4B8AzXgggiHJ2ri8SVFQJwyze0Oqe7bb4oeS0mrNCg36eT5VHEFA21OMda2
- DNS ASK pl###nce.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''