Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",gugsaxfq install
- %TEMP%\ins1.tmp
- 'ro###n.ce.ms':80
- ro###n.ce.ms/JHaaBYJa6EapdMNvoYZ4I/1OWCIvqNX4AciHk/z04kM/ICGXYdaIMM7m6N8GkddbJpAqRgQzTDKGG+yM3yZCfAHDDapkD6HdaupPzYBEjzY41Q==
- ro###n.ce.ms/uhbVJISmB6S6lzUJ/TuiIs27txEq6fHErFBXnhqnSiWZseNC05dLl3JqN+tEFIe7kvGuah0L6cn15SY6KpyfYyhL6GPJtEva+vAFAhSWXmGBzPdMDjn9XVOLm/dl6/VwJyJFKwySnEzCuax3k6/yg9GYi2OVu5v1Zhhrws8235bZdntfimc8fJKunUKqAoUFC48d9+Oi07E=
- DNS ASK ro###n.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''