Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ttreyijrpjflxej install
- %TEMP%\ins1.tmp
- 'sp####rmon.ce.ms':80
- sp####rmon.ce.ms/NjmKjWNdJesIUvrS/nPWM7wr1DoWFuHuwMfm5xcSIwaCc2ocBrBo4BnWJOGtudcG9IJv1nOsYP1VEF2OypFV53bHCpHSg57i1JkL9r88QPM=
- sp####rmon.ce.ms/jrpcoevNFZeO/eEYS1uLr9e3HzyjQH0dNwL4pebZwiC3OxjJGeyQDgZullCOJrk7EXZ781L2S/L+OfxrVe3NqPyOJhJrSBDdVNipOb1fWaU/EMdf6lqhCq8fqXgAO7izlH9yVCNQavlUzbEBtef3RKoOQlxl1JstZc23z1xE0+93jOXx0k5955H8Pa8FLHDzY3ZCV221
- DNS ASK sp####rmon.ce.ms
- '<IP-адрес в локальной сети>':1036
- ClassName: 'Shell_TrayWnd' WindowName: ''