Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",vrvnjrdgnakt install worker
- %TEMP%\ins1.tmp
- 'ho###x.ce.ms':80
- ho###x.ce.ms/hbNwqlFIbZ2TJ2La7nAhrAdwWqzjN91ycQwfv2NGnXdcjgqRYF88KOgynYZdHfXV6G5c8kS/FCSV4OINb9ta5vVbAdQYhr5+q9eGqs22pWM=
- ho###x.ce.ms/cghUuopaedbCdLi0WscEb92f+s+4TKrK7vvI2gfLHEN869B4pJ2ZF7hpnT+OgBpZ2A+H8lLVxw/EcqCwGlegK5VMRtvOCxMbBLXzA6hB4S9igKFNtmE8raJhrnBDKgP3A2l/93jRclOXEbM/lQ7bg7kT8ynyfdtJznI6kKJbAuh7OSlT3zAPJjtl+eVAXUA9apNlziFM
- DNS ASK ho###x.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''