Техническая информация
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",gugsaxfq install
- %TEMP%\ins1.tmp
- 'ro###no.ce.ms':80
- ro###no.ce.ms/jhNxwfJFLuZywarqFj8aa4ZGm1FOlizB/V5/zlzzgikGtcrcUjFwGffzesPK7/9ZEVFo/Scul8/XkzoCEnNxpdr4xeROPjO1qgili7bzGmj1zA==
- ro###no.ce.ms/rHmHcnvvCK/sNNPaqB0TvHLXaKdgHk3LZbL5IlCROsyJPEpqY87cNtJfAHurMGQfpgcZAbu9w1DpQiauRfZvVH1KMaAB2nhL86/udueccedMwfrpegl8W1iSRJzg0/PIyzsF7Rcf95e/UDs9tfui5BFkFOYjb/y57s3Pl1kHDJplEKZHm2LH5atbxn+jiMPHC7+Tt2qmBls=
- DNS ASK ro###no.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'