Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",rsgafgiwd install
- %TEMP%\ins1.tmp
- 'sa##s.ce.ms':80
- sa##s.ce.ms/AxGfudqG4DcyG+O9iym6IKlpDxhgamXKfHw3/L+DBzh/W65kCOR8Wph6xgJevVXZWA7L/UrkT0mjtdul2TAFPkYYDOmfTUxEhUE/J5VbzFz8kQ==
- sa##s.ce.ms/HpYRgUhAuNqM88ah5eCWd9rfzdfLxv8NytqFyq/q9A/MohLHO//D/uZNtWGjJfBUbLH6SQHRVy10IaShrTjqj99AEpV9rVVz+7jJW8fiB0OV9Bhib4IQbGGE49JOO13sAVmE06s44ee+SoeeTS+YNzO96Gz/ToD8vP/iVLyq/JP5T3DXCZxOGZ89QznxQcI9ZppBmXsk/UM=
- DNS ASK sa##s.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''