Technical Information
- '<SYSTEM32>\rundll32.exe' "%TEMP%\ins1.tmp",kqmryujwnsi install
- %TEMP%\ins1.tmp
- 'lg###n.ce.ms':80
- lg###n.ce.ms/KVGjYdXNJcFDPZ5laLQthkfiZXezVwWa7o0t3g5nIw/LPEZKMdHhq0gsgRnRljanBPZ+wt3qQewhd7HKEJUtPcy9JXrc6i2U/RtG7fZ1aPvnZw==
- lg###n.ce.ms/MYVRNMCkHZvxCxqiyreBIcLiaXkTZ4lHTNWl/ffblb5QZj3Cjy1IG8eJDsPjX5xsTiLiGfnQMJqdbjdvKsnd4pYrXaqXyU03Zv9sMXM8OJe1hRwGAYT3yVGSjvifUdCerX1/x3VhWEltNdvoQRzjolUuXmmsS5R/LHNVDmAl5Zial/IwufH4SvrmzDnxOuR3/5IvvzKDcYQ=
- DNS ASK lg###n.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'