Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",yibrimressdwfwb install worker
- %TEMP%\ins1.tmp
- 'fo###l.ce.ms':80
- fo###l.ce.ms/oLBrvxNMKddIGHyMKcm7f1LPoXDpKaVoykB/hLmi9qKNwmN/Wgg0WVV8F+m1tHXxLZ7cylxASMqhsKpAPedH3B5SSsT6Ldfat1a/B8uG6o8=
- fo###l.ce.ms/YvTWqDxwJ+FhUxJvrnjGt6fOpry2/7KKwvs66aAvWGTvcIPDuQOtAzYB0heXK2q0499OG3FG5q9ny5li7dx7y+bva84PQbUHZbyCU5gbGOlKctqJ2GyRlG7y6utWEmbfW5gMcIFSuafO0Qjf+5DOtw5gArnjrYT0jtDn32Pnbqi43Z+t2pLRCuQn60G0jKwTrlckmPFJ
- DNS ASK fo###l.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''