Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",zplchawy install worker
- %TEMP%\ins1.tmp
- 'ge###ege.ce.ms':80
- ge###ege.ce.ms/zwIQKZyzrx8d2oJli7Qdumnu1cWc8BpjV0DgfE3uBlRemEzw3N13OIjHPgqjX9SujGAsbszY47vVgKV451yMIkX6jm/XHTdEKY1PPrgtX4g=
- ge###ege.ce.ms/IGchuvKsbJqyrbjUlB2/cQ98YLtkPJpUtzOvgKGWYOA+3q1DnGBQ4gjJq1tEnKFxwHVjRGEzK8uFQnvLFVtcQ/FAKsDkgHYPIW8cmU9XpymNfyJpgInIx9XPGJK4VQvm3UBqYqQkX1egWDRAuzXGtg5+cSyv8hWhmxlFxoNRxtg9fCcgmO1lIl4tGqItGaAA0j3hoPC2
- DNS ASK ge###ege.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''