Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",lqdvkecwrak install worker
- %TEMP%\ins1.tmp
- 'cm###lon.ce.ms':80
- cm###lon.ce.ms/smgnhvlGdEZqB2leOfvPBFF1YILJ6bywI6fxJ39HhSbyL7YIHOC2j0CypZipb9cl8DrWUjYMZY7qQFUpYvLZT8YVQGYPN8fffauZ8oYqRr4=
- cm###lon.ce.ms/aojqTTdI2UbPnDaVpqqKD7gfNqdxlNfaveYIZ9u/f8YuEwoyr6DASAbOB7vmRbIhbWKnBsaZWh5uIAmmmx+JQ+v8a4g4BNBYhcuI5B2q3aTJnjDCak8H9eglx/baB4ZwjkTECDssWUzPNh4warkpWiVNrkmdjryDF7FNZapiwhefyCIphmffX9hdSJ28rbbNeBAELlDA
- DNS ASK cm###lon.ce.ms
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''