Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",lqdvkecwrak install worker
- %TEMP%\ins1.tmp
- 'ge###les.ce.ms':80
- ge###les.ce.ms/YPsHgskzlf9GJ5nb9KddJ8yruOQJGc+S+41JLv17/uP/yjzePGxgr+cRMiUOYSP/09OVQdeBGlam9DWOAjGAEtcWf8erMiykEKwbbtDwVUU=
- ge###les.ce.ms/xxsGJlrMOA5iBY8K6sRvUe0YEr0VxALfj1G+kUQa5mvCE149qYUdSiUyBJ+rvCTK7i+e846QRn2GgSHJu/8rNx+BY6wTUD8mXVhSXa6HMEYIi6yyQpEJZTUqWNJrq+bKUIUfglIX7yqj7+jU8Aaj1DVQGziq9HhaD4OMDjDa86FRmukBuO4lOxGTHNLA0w2s6PtXOF0E
- DNS ASK ge###les.ce.ms
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''