Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",rsgafgiwd install
- %TEMP%\ins1.tmp
- 'po###no.ce.ms':80
- po###no.ce.ms/plRgfQAe8G6VfQe2F4niV5hf8Y2M246vgpEklsT4c4CMy+jjt1hGkO6EgK1WYYao3D5GsVx7q2DN8fqSN7a3lvtnxv80DOu/yatrRFZsiPWuJQ==
- po###no.ce.ms/GJbEeSOWnLw7dLnomEjveyttgTDzrLvoeJIqcAaQ4L0HISiK6ih41ys35UTyHggSTHoi1Sgs2enpLIV+uIEfQcfvyB0dlejmW4P+iD2mqjLMAXlE2kwuX2xxQWP9QtrmmLSGSuPv5zar/5lVUr2VaNb7pZMm6xE/VMfde3dYzVdYLCtbse5r63LSx4Pnze49Kjw5AOhSskI=
- DNS ASK po###no.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''