Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ozauswrvnug install
- %TEMP%\ins1.tmp
- 'th###leo.ce.ms':80
- th###leo.ce.ms/XrXKVAgK+XsG8h7yB7hQH3ta2Z/tfXsbzGSJ8QD+yfVxdwwI/+KktQEkk4HXHyjWKlSuEfTcF3d+shnzi7abkRx61r01aiMttkE5HYOqFpYuXQ==
- th###leo.ce.ms/QLxHGwQLBRasaEUi4pUBHC9Tqtiwj6IKUGghG1qRnPi6IjFDsR3AmbGAwEfgHYv9Lt2GkSWPB1ZB6Q+WjfFtdAhdXkMxBEK55Uy4pt8mZwDTMQzbpjfcs2U6nH+8ohYNxumaEAakeBBqWnGB6OKuysW7WHDfSyFN3prlVVsMpsFByWQj8BaShi3/RSvxnjteV2wNhJhyFIA=
- DNS ASK th###leo.ce.ms
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''