Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ixmhcrfw install
- %TEMP%\ins1.tmp
- 'do###e.ce.ms':80
- do###e.ce.ms/paLAsStcBoGlXqSWFC8uKKj6g/H+EAROsw7vLhznEeizkS+2O9N7EKIWxakm520Qq1Hs07LTjGhd6xJgXauOrn8F/ofHSXrV7MA1uf4ODkGC3w==
- do###e.ce.ms/VAVWuGqEZQKIXN13SDofpQdnDYYJvAY7ltENo9TSQQPBFIqeQJj33An3oPqQD8cs9Rq2arfTWJOEVtfbPl5gfB7zqp8s4/oHa9haQFdePAd3WGNDh3XYXvYUJo+swMFaEv2vN9kpYeu7hYthnuHPS1rWA+gceRpd4uTnc2exbnI/lXYYRfPNOVBEGM8tL4hl/pQUfXHiwBw=
- DNS ASK do###e.ce.ms
- '<IP-адрес в локальной сети>':1034
- ClassName: 'Shell_TrayWnd' WindowName: ''