Техническая информация
- <SYSTEM32>\rundll32.exe "%TEMP%\ins1.tmp",jufwyscuoumnb install
- %TEMP%\ins1.tmp
- 'fg###ey.ce.ms':80
- fg###ey.ce.ms/qmkJljtvkSmLGmC6oWGgiYtY6h1TrRjaJbGYmmWal8aHyus+rXCHtHiy7HpG1T+Mk4gMBCRdrywl/PmlKD5nzB/FiP15MGaNPlLhquhNw+d0sQ==
- fg###ey.ce.ms/HkEpTDoaqztBQ9czwxv5KwM0ywEF5u1AacGyQjLgH8+KD9ahXSsJQKnnyEHHpFbY4+NDXJQIU5TIoa838YqH2jcVy9i69xzv+xMiqzoM3/IaNlSAJ2GEln/APNVu7lT7HRWlVcXbXDlGxMxbi56OjZlQ6MIyWLQDYNk8+I4LfFKUDxUCTBa5tktGsiGEc86WRWAcRGKkddY=
- DNS ASK fg###ey.ce.ms
- '<IP-адрес в локальной сети>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''