Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",ixbhfylh install
- %TEMP%\ins1.tmp
- 'ho##r.ce.ms':80
- ho##r.ce.ms/KFJGqUPSXbyqRDOOymzEteILLEBzT34M8X82E5dfSVDxcoTLBH4KcQ8sA9TfjbgIZUsftbdn/UgTrQ0ltTFHZbY5USxc4qv88rfTrOXCXZWacA==
- ho##r.ce.ms/FOFMgOLK+CRcIO6Ww71eVhxE0f35jRdKMLWHyyu1SET/EBt9IBWpeQdLXTRZSulZUW34w8jcbZ5EFH+8ocqQfoUlZIdRl5k49c4xi/RtRSj96wwRGa+I8INvZUZqGbJBPMk5kBUltQTVQawl37ZnnErvP8fLeB46helIALk9V/mLoYHbM3L9A/MJsl8lLIvuETOcbazhcaM=
- DNS ASK ho##r.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''