Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gugsaxfq install
- <Полный путь к вирусу>
- %TEMP%\ins1.tmp
- 'wm###on.ce.ms':80
- wm###on.ce.ms/wOXpuvxY++cgytl8xW7k3DJiSySf1Ke84XPH6dHPWatgdOzZP4CNJNi5P5ZoOCQXka2a4MeNUgGnNGMRdsZ33t6/IJk/lqqFzo+CfcmSmIjMmw==
- wm###on.ce.ms/cwwUEfXpFNwmBbxAWpQuRfU6VThWdHHwjE9soXzMxmcAs5RWmBF7vY0AJzQxuvo3iyHPaIz6Sy7rRmcPsVrl0Ndix0xlFHIdshosFkYjHj3HCqHv3vWWiHkbBFmOZqj4RkRoeKEgg55GDOIXnbd3KD/j0GNfB0zl/oH2tUvCE7BK6lwjO32kcPNf2UDPg9h4zqW0nmWbm0w=
- DNS ASK wm###on.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''