Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",xncujvchq install
- %TEMP%\ins1.tmp
- 'kc###wsko.ce.ms':80
- kc###wsko.ce.ms/zmtuDydu984DQVgG1SdahIFvQQAnFAEwL5uIESrtOC8sloJdJbJ1HqRpp8dUSF0cVkPEjVir6rc2HKw0FWnxvnTgycxoPvaZkUC9W57OtFs=
- kc###wsko.ce.ms/kTqiPXuXnmkVhcU8T6DD29P3YxtmYcffk8XF7fJ/Gzrn8jsTRerLpfH8IwvmAM50hBRFEBaD0PjGbIlaiJA9ZI3x89qRLdXzCx8CZme9cCpIUrFL+K2PM7kHT01VoeyCb4diO4PiMsCZpBcFkXUekd7WcqZ08BSqQriLGb/720aycpgGTc0LzfrjByWEZaKG+/MmEQcV
- DNS ASK kc###wsko.ce.ms
- '<IP-адрес в локальной сети>':1037
- ClassName: 'Shell_TrayWnd' WindowName: ''