Technical Information
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",kqmryujwnsi install
- %TEMP%\ins1.tmp
- 'op###e.ce.ms':80
- op###e.ce.ms/YFPfcnRERN4fOLUP9LuW5vO0YMvQRw+SsS/rEnYDgjS4MlI2cHaFhSXSG8/OSGXfRwXuojl7hPIP6oYvirAnJfF8ZZHXHI/7ek+6z19SM77v3g==
- op###e.ce.ms/lIKGJBhD/c3jpiyN4AMSvbD1yXc1oql5J5Zyk7FJqpXc1U3fUIsrabWHdb+mq+7wen0Eg4xX8ja+93uX61yqspnhqwmnyJGiS3RrA44lMUlojoXn4hXL0fOHmLQATGbd9qmQfiZW1Xi0dw6VdLKdcQi//128S1+QZCzhZikJgrDi8JLUId3HyiBn19nzTN43MiXBfLDx79w=
- DNS ASK op###e.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''