Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",rsgafgiwd install
- %TEMP%\ins1.tmp
- 'cr###n.ce.ms':80
- cr###n.ce.ms/RFKyRSCp+O+0MCG/ZYdj4Ken9d9FVL9Jfjd476kHaifwiI7M9d09Ry9ANh9giMKC2tkGtKbRI/2Uv2qItxmIAYfautpZyrF0dYyBsdZYE2qn8Q==
- cr###n.ce.ms/zkIzELKSRitlSOlYpBeNJ0d3OLZecoJ6qpDlaHEPrDkAsCwToflyjP9wi4BjuMN+1WkHoJMcTqJ7ne/BmIwXlrcZ4yjAI8gjJZMKWGoCuglaUAA6YSPeHdrQ5KoTi4Ex25TIwdWw17Yb1bsBZxfnlXOTEpkhOEc4UxVotjdDetvi0J2QaExOdUW9pj6qWUT5rKyl/P3muUQ=
- DNS ASK cr###n.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''