Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hwivwnxkd install
- %TEMP%\ins1.tmp
- 'sc###e.ce.ms':80
- sc###e.ce.ms/fKcPJOJY3pFI93BLiIZ8QAxsmFdZKvZyipSmaG78UeX3YP9CJb6uIkUWDZYivg/8NeCQsZG/DFVNc/wyw4R06NPNXUJYefSMKHMyzGayKdIYXA==
- sc###e.ce.ms/DMOyALdcDl1SifNa2Pl0OIGIw3k8MlbxcqYSXezlpNCvr8/HEiAH30vlQ82UjWQ6Zbk25gXNWIzsBGx29LcKEy2meOuVhrZM8v+QNClCFc8942NMuI3IS+FmmFYMEZEbtsyPuaMIitvtuNmsrIjG+ICFAH0RnWmPUGZACvX3P4c8i+sty9MeyjtGr62lb0GLvM5kEr0wXhc=
- DNS ASK sc###e.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''