Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqkpxvobo install
- %TEMP%\ins1.tmp
- 'ho###n.ce.ms':80
- ho###n.ce.ms/vRSmNTmiTd6BAXOPpDKBOiwAs7CgnVqLKsE2ysfUK0JOjq0RbhAi8EcoexAWjxL8EY5LrOrQLXwa85bfG+JZ99X1omJh3V4gmbZQlVkW1D0=
- ho###n.ce.ms/ntMDZdkdPJDnnwMjcRLuwDP4m93VExRTsAuJaPpnbwQNkXc9/wyFJ93ZKNS5GbzNnd62aEuOTlEu7Cr7XVPduFM8eevbm3HZwTjSGbaW0bPU4QNRwQ2708oT1k/ISFHjctRU6BEvhy7/WeKC5y3E0XFuDsFvkywGqwllVfMj5YoW3N+4H9ZFS9U3RGqeocv5fFGV7LiD
- DNS ASK ho###n.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''