Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",rsgafgiwd install
- %TEMP%\ins1.tmp
- 'cr###n.ce.ms':80
- cr###n.ce.ms/wXmGbXzuIkme3DlrkGG+STDQP0o+BJjQRww7yk3Ym9sX0xRP3k6XpzTwKAI8P9jQ+aEEK+vgbqPtTVlpIAC8tO/RfDDHJrY8DEBj2G8xu/GTqQ==
- cr###n.ce.ms/CfgNsDMt8F+OX8FsHT7v2ovEl1qoCA/sL/dhZEpZrdkL9Jp3Yb9aD75m9+cJeHVQttzo9wjIEAOON0ng2eKmjwQ6hWe+9AVaEGOqqaRUlMByzDP+0Rz2Pc49xgLFQAI8ckAtZC9iUMHOXmKFP7rsjstj8A2B4ldhav5rd2T/iGsBaNQpX79IR4BfFI/zN0FwlxzrOlQd7/Q=
- DNS ASK cr###n.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''