Technical Information
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",yncnjqql install
- %TEMP%\ins1.tmp
- 'ge###tzke.ce.ms':80
- ge###tzke.ce.ms/myRSYwkhn6MowDLBgmDEw4O9wSkLf47I3jTDyz4MT0wBvlW+igNeP8WKTj0mCMhrxAz2FLHsfIAA44OLVndlpOuFlGC7WGRtHLHij4xbQtbK1g==
- ge###tzke.ce.ms/sJDbdRqsTIqv74RqRqkoU65RwWtRxSEMF00Ds5T1SxlpDvQZkCSfoOJF0+z2ZMwtjgA96JCefdcR1Z8kpn4ExTEn68LFJsOgZruAx0xx7rCQbXeSJU74+3orv6m1lbZuytv8eQMwfxGzixNMwg5qUHmLvQ8tOCfqePDzolyo3Gt2iHgWA4eTShAf+lTv1iQn4KFv+uK3gm8=
- DNS ASK ge###tzke.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'