Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ixbhfylh install
- %TEMP%\ins1.tmp
- 'we###rhof.ce.ms':80
- we###rhof.ce.ms/eveMrgSC1OMafcyl1hmIMwP2CJ0X3nixWoTwTJZVWUnfZIKna20F2k/9tfRPSn1t5IqeaW1MW9oWbj3Nvj3YHAvQ5WjHh1x6rpJTiE7LGsXBkg==
- we###rhof.ce.ms/KfjJitfNYaVKI0HuIJ6xWh31cTJ33o1/QnWtnxIpXnpAOUVt9DIbBQi2GRImYCYmzVMdZQ5H30uTIMFohwYRABg4NGGWgeCm0luGiowjraRozUzq2yntU0relmB8mueFqqS8l7aAqAuTElnbA4MKRG+Sfv3bKaiHV2plIhaPB+Sz3zOWpM8H1GbV+timpzxE3liUO9d8jr4=
- DNS ASK we###rhof.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''