Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",ixbhfylh install
- %TEMP%\ins1.tmp
- 'ro###tt.ce.ms':80
- ro###tt.ce.ms/qCsrlDiuXbxIiCX1Eh/p3r+1k7VPV1TIDx5lzP0du7WXzaAcQM23DX32LguQvcSx5JbAV3MA7hoJvcF8KiC7E0ftZ+YFN6qnYKn5UXjWatXKYg==
- ro###tt.ce.ms/OXzxQZXEUL/hZ23+gGB+s3uuFRqOmZYa92uw1yPnCWnSq9rRPtRzOJPg+GQDHKZmm+gF3Jdf/lUM9P4H6sqPlczRPPx4zFX2C8wxNUy+DACuhbf+TglZnCGowWbFXILfcS3WAa9P0ZpB++jSHSUpOFeMiS/zdVyYmgnw1G4PWC/e+EfDLSxew9Wr1luwhWoEBSSsbiwzibk=
- DNS ASK ro###tt.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'