Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ixbhfylh install
- %TEMP%\ins1.tmp
- 'mc###hon.ce.ms':80
- mc###hon.ce.ms/IrirypJWH8FYPP1yOyOvuz93YMj8Wi0Q1YRMWyXWBRcP6OoNKMIQOqtbcWlMsTc9byNDOepFp0JHXgOZzW7QhIAZvK/LDPDDbzOGZcJv3JABhg==
- mc###hon.ce.ms/KkazDDPnNFU9Be6ANNBNEl/Og7Cr+bopEosN8n8SQdnjKNDj+xenKmte81REidHOxsJ/XNxWoT1U7KDQ+Atm9a7dJ7Giki1n2Bkin7GMoeX84JMY2/0vv0egVkbBuj4YH3eNOWczYe0ENKhfJgDWbTNMDIN4tgKf5YqXBB0hVxRFdSm/P7jHaPLyxfQq4JrfOdf9IT5+iDk=
- DNS ASK mc###hon.ce.ms
- '10.#.1.1':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''