Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gzqolmkwup install
- %TEMP%\ins1.tmp
- 'sc###oh.ce.ms':80
- sc###oh.ce.ms/YqdpBXnFr+p7lxQ42iHn9ibK2zaBzPetGQiXOHT5O8Ot5LDCwrOUwLQwyfG3uYzReYr9wAVhNtdWF928VV890V2U1Snw/4JiTw4lKxJ04kkwCQ==
- sc###oh.ce.ms/MnATKxjJ5Mn1HS8uRViPTn9pGyR0v1wRFLHk9i+LkpGQA8Al/wHRT40b+uuUu6ubKuM6+m5CEtUiSxtPWQku+ncy811sXrZ1FV/dnsV5UYLlDLbLACvHEKQSRhBYviyNGaMgY5+009/P4FyrxT468MANnm2vT9nPBHDkjS7J8YyHe4pqpTRrV/WJyDSQNfaR7X2aeOaYEZg=
- DNS ASK sc###oh.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''