Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gzqolmkwup install
- %TEMP%\ins1.tmp
- 'jo##n.ce.ms':80
- jo##n.ce.ms/mEnWlyykCzAObcHOlSVH5iWsrqWObb+z1nYAR5aJ8iovQwPaDfHn0BEE1IQGXss+HqaywN0QSNRRHNLpK3gYSPvStMJYFkAVpqb/oBB012cByA==
- jo##n.ce.ms/kWKnhuHoic+lX+KRJqWhYFds8o+ENJQRth/0322iw6xWXa6gsyxC+rKcvPzWDbuughLd5fXCsX/ZdaP+6JY490eC/ajfmf7ypSJnoQXuSWIucF/XrdEceZTt6q4rUazRocHWLXXkbRo2lI0vhBK/tgzxdUANSIx3BXc1rLSOcRVKPhhg9yqtoLJFg4b91n8s42IE+KJ/oh0=
- DNS ASK jo##n.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''