Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",vgfauphxk install
- %TEMP%\ins1.tmp
- 'to###es.ce.ms':80
- to###es.ce.ms/ZeoZQxGAJsBN+sgwOMp7n1xpQ/oAeJM5QMbQRsKBE9lVz4UPWZsA6QiW2JPPDq4ZRB8G3NdbMB9IRZoU8rbDjjatssxAncXUu9G9SdqS2es=
- to###es.ce.ms/PFAnHZilPBe30CF3lOuPvqgRflqCkXT65jEGco47yk5zP+yXwJTvt3uzflH00GZnPU48RU4xRUQTsEi3+PthL3QiERfzcuZ/hZcCw8bmHDhgVrWCLNP3mUifv76fjujTOCPk+IbYfBjxVevitGT0p0yxKdZeNMXyFz0q6ECCz7Nbmq89KRws8sW/ypV6/9N05gdKVIC+
- DNS ASK to###es.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''