Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",kkcsdsizgpgeobq install
- %TEMP%\ins1.tmp
- 'pr###okmo.ce.ms':80
- pr###okmo.ce.ms/eoBmibXlBCFYDQwk6FqXpAkP3scUJNk0rBpBndTope2vQCC3DRMf0OTmwakf9GjWAlQb8OzsZJVZyARU/znmGTTow6lk7z0t+kNOis00EPEKdg==
- pr###okmo.ce.ms/ORuHkYHi8kBoy+rSzzE57ZRPMrqulBzVpqJkF0FpRfRQJGmOHFV62nEShej+yXTjCK506b+BQKBwyUgfY1E1hcB6DXik/wxVVUd/dnEh5+A55zDBnbpPJz9u1Z8EPgqklk0vbsLKCAsnles3OVKojmjIr+a1lU5Qy0RneS2fsHLoJKo6uVxM5MWtcrA7c3lNuEayVRZfYEk=
- DNS ASK pr###okmo.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''