Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ixbhfylh install
- %TEMP%\ins1.tmp
- 'we###rhof.ce.ms':80
- we###rhof.ce.ms/wukGFZkvrvGQbXm/7HJTIzvHAoclwmu39FMA3vEtiTh9U21UF3fJ73cZKLQou08FtT/B9eWt5Hh8vhrA0w/6H3L4+AR7ZHJAIzMJl6M1Ii+V/w==
- we###rhof.ce.ms/xfdvOaSkhP+9+cXeyHJxRSE33ZuMbJM7JnSK6V1bQErGEQ2hx4BdBV1HQK4Le1sAVhUxDP13UQOsBBI1LqGvUZDkdnH0MeRgD1MSg7+iSW+EMHnuNFmREZ4tq1LYnw5F3nqutPxEl8mgUexYyE+TLtfKQ27aIkDeV2xTnAEJKXPYFqV1J7TO8oRPYTEMfGE4ADd91466sbA=
- DNS ASK we###rhof.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''