Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",jzzcmhvu install
- %TEMP%\ins1.tmp
- 'ro##e.ce.ms':80
- ro##e.ce.ms/oUiTQATKhsyXNbZe0FdYwOJM9VjSO5XIzifNIYnuE5+fbMrkZIcXrfrItLBSe5PU/CCI4ti06gAX0jIJfP67vCyYq98Lc+f+bmwxQUz0+GzL1Q==
- ro##e.ce.ms/YCsQHMtlOCExJBz2jIuT1H89u0+YmaaA7XVlEQog6x2uODNB7iDNIS5e//TOT+MVMRginlCfQroac6xfKPGBWfMnYnz07fFKsk+hdy+OqvUVDIkT3dWhad33TKstgovXbNNdkIgcTbRiddJ8sICM4bQ2PxduO4LBqbaBLOiCt29mnYJ/9aUiPmsgUaBOMYEM47R4SABlg4A=
- DNS ASK ro##e.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''