Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",jufwyscuoumnb install
- %TEMP%\ins1.tmp
- 'ke###er.ce.ms':80
- ke###er.ce.ms/fLNXVYlOjLhRhPG/2NFQy6nOnQkRsSC4wHvG+fJdfZHhIwsktGcwUrGthfg0LdVZLiIcmdmt0lBqsZLhHWg+aLZDzBdHTnbYldc+8db5cyP7PA==
- ke###er.ce.ms/SegGayevNCDQENS7D8myespWb0VngIP+pCkUsZNMTdj/lfL0IU5UQtmfF+nzR4tsvQLgcrHEtl2gyKoMkFO36YJk+UjZVcbGISSffjjVrq71UzS1sdvGwjQg/oHYX5JB9eySMprPD4FZgj5eJDp09p0R+pdPOcScyS+1g+pT3DBJBFSHJ2V5Pov75IB9BCqI9syki4353eQ=
- DNS ASK ke###er.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''