Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hwivwnxkd install
- %TEMP%\ins1.tmp
- 'ge##.ce.ms':80
- ge##.ce.ms/gFVvkgcSlMBM/rLKIxMJ8mG0ILUresgNJCNhRNdL1odciWyXmpFO6LGR8hd1wm1lEMXj2bdcw5YzsJa2N+EeiHQVJBQzvqymkAFc6nDvKDA0sQ==
- ge##.ce.ms/BCmummYTUbuHn2B+saFxe2KO8mENYwonhHNm7PsUh4kE5eo6iEC2Y3564USryM8S67Ix2nZAzOiDsKnBG4jWT82OG5IHgpAs6ObkFeqW8MCgMvMp0ugOCJLFs6oQZHwljlp9C2MLm3nBudwsP5y/afBNKPMIVcWX6Cd5f1Psrb/TSQJ3Yg5qvzVI4xzUn8AgOdgxp6OvlIU=
- DNS ASK ge##.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''