Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gzqolmkwup install
- %TEMP%\ins1.tmp
- 'mo###e.ce.ms':80
- mo###e.ce.ms/VFAcRcizIeRnaC3AwPF4wz1aFkIRZMbjDQmFlVvs5OdMusoI7zp0wIw6iweYU2fqwLEfB2lpp4x2Ql0RHef35PpOsn0N+69tADClWquOlUvxMg==
- mo###e.ce.ms/ulHhQwxcrGIAIFY9mQXQ+a8nefmrJCb4VAgFMpRdpeBH5NnY5Cgpn/FZj6NBg1SnnB/C6UAo8ixtHVswhMOZ5f0/H3w6HBBQsoukGCZmKT4USdwuNVfiGf3URkK8MIqiwAr1TgwW6KZouVhdAsVKMlpn14ziiIEOBoQJ6tXf2EMquSkIol/GHcnN2un5rLGSiFqNpEbUGcQ=
- DNS ASK mo###e.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''