Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",ixmhcrfw install
- %TEMP%\ins1.tmp
- 'kc####ceos.ce.ms':80
- kc####ceos.ce.ms/GyIsBHOT1q9VgTxGzxh6zY412D/wcTfdnmhpu2JEAqIGQl/DHXbsNrVPyw6Hh63yyw3onbB5E3kyzgyRrtw6Bh582grbM/D6f86cxDMVKzkMBQ==
- kc####ceos.ce.ms/qdpLKrBgZpztXXZow+JRUy3RfXkhebF1Pfs2jBdAUaVHSrPcE4ctRsDWp0oCSI6hyEZV2JBKXuiHjlEsxSk7Ddr+omJ+3s51+lm7HJDfo3QvSQgX5EgzIcOm0twPVoSVuHsToZMpuE3OspQ6BMloVX8+ZSm/MKE/5jO3anAkxiHuhxzN7FS6gHyCXAoJ3RJdQaHqj82WdA4=
- DNS ASK kc####ceos.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''