Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ixbhfylh install
- %TEMP%\ins1.tmp
- 'ce###ng.ce.ms':80
- ce###ng.ce.ms/wSVcwxZmpZ0nz/jQ/5Zik4XOt1RTCQEWroq0ZDxzxgOpAB5y8IF3f4kcFZCZv1RViZvVby37aarvc+m/v4zF4ieIW6pXqCS4Z65MpUtR6YSC8Q==
- ce###ng.ce.ms/MynYfOXoqrNQkLpFtDuUMuhe1Zt0uDmJUZwra+asdTDUvW8DzGdJqANxth68EFyXafT/JsfY4+y7dWSLOeILrKfnL7RdFF/xLi4Xm0sBVgtYnfYAdE0/X5OyORaHeCrdYlx7tNFiQZuZb+4u7Q5P6r4mMY+LhE2MBbRPpBTXwazxNJrCUHCoXiAFGyr+uv4W2cC33bn8VVk=
- DNS ASK ce###ng.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''