Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",rsgafgiwd install
- %TEMP%\ins1.tmp
- 'he####erger.ce.ms':80
- he####erger.ce.ms/LzaTLxyWp+q6j2eNMGuc+QCjEsnxjkkD/yWp8WAm6O3427UC4b6Nrx5rDS4/2TRTV3eCz9Q5kdy9/vo/vtnl94yTPPj7AiSqFFv2Q9Yr+BI=
- he####erger.ce.ms/sjcbxCTJqfATap8ZmCqozK2X6iddKtGWWpkmkJWVS+AjZwQnTB/CNi45idi9ZezPhM6alGFNaHnimSBCCsY1ZIJdgBKSldmYwvGgKkkTVl7Jl6bliqeD5KMkOsO/OCFBLDEGzOXGAY9TA6eKG/FjGD8JlEA6ky4yBdbgwZJW4/e+JLkSvZ9gqU8UhULNbTqgFxS+yZTU
- DNS ASK he####erger.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''