Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",mxjtizdo install
- %TEMP%\ins1.tmp
- 'he##n.ce.ms':80
- he##n.ce.ms/QJkLlZKLV6ADZHfDn5bOwhBzC0MS0v4c0ZG3ciKrEcTZ8K0YjROsrTPpxKc9EgFxbu5EXWuVoRRwCs7k/Tj7w6t1+92Omq325X364h/9ggNDkQ==
- he##n.ce.ms/MwpDLHll/vnWz7ng0GvM7FfdmhGbJpq9QkBYyrdh5OWCz33Z5ONXFcEUpLAMHfLThchkFlJ+ONqH4DMJeWsKZIpd2AQBP2FENAsPK+3WW0v3xCdrKXW6s10DgSC/zgWfx6zxjDJXj/qDJNRboPhoD7RhUQ4Xyx3+HE30QmQa1hNNeR+csWzSTZTMK5vU7AjJKsxFyrdJ0Ls=
- DNS ASK he##n.ce.ms
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''