Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ixbhfylh install
- %TEMP%\ins1.tmp
- 'ro###etge.ce.ms':80
- ro###etge.ce.ms/LPLgpFzyBk99goX7ZA0c2ItpVdEGIz2PKZttTUzFW3WpxVbf4wtoaMrCfnRSGGsNb987jVBkf/aw6maEapKQ2Oy589Dyr1Iuu4MiDjBegFnQZw==
- ro###etge.ce.ms/BzpGXCuQs6mJjhLwoCSqrCdlBr3TcNcW1/nVSMh5dnAwB7UHwQ9IzmpU5i5KBI+dnaaDq8QFfM/kO8nsD8qiLEJGmV9wtbjrBNMP96nLLok81O0qcV9wJtP13zlORBgwDdCsgZWiU7nBIhCbLGOlQqz1wRv9ODWSi99j7bLai9Fabb5l8i+mtUVU6gIiN4zQOlLNjVzf0cA=
- DNS ASK ro###etge.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''