Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",lwkmesur install
- %TEMP%\ins1.tmp
- 'sa###ll.ce.ms':80
- sa###ll.ce.ms/aNQzjSxjAqNjIBp64Mq93ePXEgplMjuj3FwvhCqC8QGIJkvLDC6b6Pn9NiGZRYHqcL2kaIcmDMDOGFWTABekufaT/Wx2Q/wuZ3KDLdhA38z3ZQ==
- sa###ll.ce.ms/mPfeClYZy7ECaH6MtH+xo6X3+YTlwxy8qbCcCOjmIo9lxRM0kwc/c8ERIL7tsA0HPLvuKU+EOtErz/Qva+hACoITdZ/DjBhtmpLjmEp7kWnnEzWtp7Sz4BTYbW0WHKqYC6BSJS8oRgBlCSxlp9jZ4ZPFccXMYOCym0oh3O0NWMYZ4+GbcQtx3ePRmrwjhJ6hTrYmSyuU8Z4=
- DNS ASK sa###ll.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''