Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqkpxvobo install
- %TEMP%\ins1.tmp
- 'di###sal.ce.ms':80
- di###sal.ce.ms/FnCQwXcPJRNrmPh+7FeRJ0TtFXfqFR+A+rQxtAGWQdIY2EdiUCn38HO9aPUhG5HgMt29WKh/8BiogjnIWvPYIvoUxSzgNr9wnBHzC7+ufzXlxQ==
- di###sal.ce.ms/PdjOPDZCRQM23Z/DKTnbaeFqmZEMcmFAjC4Kz3ztlZhztvEEHvk6gwQz4dFsfgvjCO+Ng7+rll+xNgHq01o72qjfBkX2MW0ZFb5DDfQ+gbUEivTW4Y/SY/kUHOaxxig+6uiDEYY2ErC3Mcwn8N1jQV4o13XWN1jZW0V7FVdMrfuj9VqXel0qzaKIOkMxRKj0fwykJM2J6Gw=
- DNS ASK di###sal.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''