Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqkpxvobo install
- %TEMP%\ins1.tmp
- 'gc###ndez.ce.ms':80
- gc###ndez.ce.ms/jKTAoCeIRDMeMwjJjP8dmvpD6XDN4JWxNwl7lwvB9yuou4IGy01VZo1tUBiDfLa+RdxCr/Wgv61To9454SWURDlEcwdOKIoYkmPVOzUDQyn1Wg==
- gc###ndez.ce.ms/jhofcdPbxaeG8e1C7WJkqLocW8T8AHHZ4s2z6qw950WPRUQ8xVAwgmM5lBTPIUpjY+bumT9fC4Vy+9GmF01fPnWpwT5lyvoJPEtIQBNAQJV09khcwx7ekmcnnp7Zno4u03aW+eyoaSChHsrpW1TgHrwLaM+juN7OIa+A/48Ebr84ujL6h6Ms4Ghmn3SAeZroGa3wWq3L7BI=
- DNS ASK gc###ndez.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''