Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqmryujwnsi install
- %TEMP%\ins1.tmp
- 'sa###zo.ce.ms':80
- sa###zo.ce.ms/LJtyijjoKvS3UM2nGJkVWAzC7VPn5dPjREVbufarFWqGzNP2eM+z9P7wH3ArGtmOkI7WRxISmQkALOL8esm2OhjqoJE2fmAaEm7qEhU19XXdFw==
- sa###zo.ce.ms/lFdsQXPNCCDn0CAPoN+MqF/poL7IWHai8vrl4csXhI4LqPJuUO+7EUGUyK2OeBcX+dLoumOKMghaLCidnEL+54W05jnBl0BxLSypBINLsvxxGOyT3Rao+HZInzeEkSouVUb045cLj4tEYqBHHMa63t8uzR6hsAtMNHUcXPZCu9DP5b7eQ1FVSa7k2+JeCeoGf3YYBvLf9vQ=
- DNS ASK sa###zo.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''