Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqmryujwnsi install
- %TEMP%\ins1.tmp
- 'sa###zo.ce.ms':80
- sa###zo.ce.ms/jIhQzvIFeS4iy1XSBQEH6VW9N+FsJt7fZskZN4xnba9YeJi+hop97ZP+i3kN9lvYaOPryUdhGeIriCqI4381AQMl6NUPnHhJtSrQTXETVbCSvQ==
- sa###zo.ce.ms/bWJIBLzbAI0Ay23Od+pSqfttpe/YJAnu3QpXt8UHSlv4zA7esGa6/dgGHq5HoLANqQH/LgbcmwV57nHZJVq6jCsVQVF+1Wa/4Xk7cEBhML7NDB/LtBKa87EwOjSee+donU9n7eRl4suBGfesAfQBLNc87zvUFh1zzQ7fcnsRJK9xDJRwZQ4CytiYbdQpNEyYhwIYImVdZXs=
- DNS ASK sa###zo.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''