Техническая информация
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",zevhowyuxtullma install worker
- %TEMP%\ins1.tmp
- 'we##e.ce.ms':80
- we##e.ce.ms/HXbiXtnv8hjE/JxEpcKIDbarevWDGTrI9ReQvkB1nxfgZDMc7Jg4NiuWRN4qR7/P19KB10eyTC1nM2xSREab42OMvuF9kEhze4YI/6Bi1UA=
- we##e.ce.ms/kkLvcqgZN+U2UNmc0xQys9l+iOnRIhsXT6OLQUybtBma3rfJhX7PRrkodpucbyFiMiqQ34wZSTFniNhhvWVU+hyd7ph3XrX3NQs83q0QB4qcmgRnlR6MqKWirnAVFsBLSX29IP9fYQEsAp/c9ids17ANFP+sRzcPh4HDf84Yd5vLQS6UCLmXJwvIbRxrQK48BFnAvbda
- DNS ASK we##e.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''