Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",rsgafgiwd install
- %TEMP%\ins1.tmp
- 'po###no.ce.ms':80
- po###no.ce.ms/ApRwpIdmih/Xook7K2KN7W+JbypnTZei0QQyGsiNaX06Uz2K3HpQsB7c0CLOtWkmetyoW8moC9h6ZOfx9703Fz6a87dyg3ftzY7mjmWNlyLs/A==
- po###no.ce.ms/MgpuiImH74TpMeKfVG6oyNn7cu3ZDz0kE0/sPf7zkQ8kKYCe21YupUmhSqSGkfeJ99OohQqI4CmY455axQqJ27fsln9LKUUyNcEdQB/3Dx0CLhAbe9PFdR00lw5LNQY50wbfO2dAbU170gOim11ISjsdph6iA9BPAlK/GXPV4G9XJm9mCQyGeY+u0d+c/iD4YJnjA2Ab/gg=
- DNS ASK po###no.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''