Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",gugsaxfq install
- %TEMP%\ins1.tmp
- 'ro###n.ce.ms':80
- ro###n.ce.ms/ErAilNCZg4PPU0ZNg9ubRygmiL/GxvImOJHhTVBb3B6EDCeYOXR+0Bo03mzjPNl08juuX8aVitmKLUdZUjVYhfOyB8ukAT1do6GmZlME9agQXA==
- ro###n.ce.ms/HgYjOMkzTS66lImVlyWKlqcR7qIcjt/0It+LVLrjojWVoR1cFR8VX1TuLMMb1Qu47KMLtWJ8fGMNUQ/M432d/VjOTHQHP4pkxHlaxsFRvb53sJeFKAwkaJeo29e34S5UK+U7Sx8Vkl/ItsnUvUUy77lpCmq8N8jq/sQCrbIWzrjk5eqcOhbAEF7Jz3NFQTfn1UgBSBMeJJM=
- DNS ASK ro###n.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''