Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",vgfauphxk install
- %TEMP%\ins1.tmp
- 'to###es.ce.ms':80
- to###es.ce.ms/boIfcZhPS6fk19QBF/qlxxdpg3cOhrwbm02yxnb/jPN4J4QJmuN9eK6KR0fAUFO76Nc/uzf8vHeElihUZcTqOhG+9wfniMWsSxd83iN0Xuw=
- to###es.ce.ms/OqtNCSLt4UiJH/9HApir1HfTKyp4oGfRqE9Gii4bmh3lrui7fxgYKpA1vET2Xd23soQxixFiu9xYwrWSGoIPYxTKswDn3+WzbrB3IfftyJyqOLa0022ALQkbw1Pw5geBf0gNmKsCkLjIvzgRIhUSyQDGfOn+sFdOpsf/EoeEjf426W6UUTat/W3uOBP95Kz73h5dK4ev
- DNS ASK to###es.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''