Technical Information
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",hwivwnxkd install
- %TEMP%\ins1.tmp
- 'pl###onts.ce.ms':80
- pl###onts.ce.ms/MfTNlgyz2mhtHTqRnHgzK/Mi6nk+UHG6QH6XwSBtT4trlW+Q2ko16fXyeYx8myflZ6RYgemBW20puSPW4BdBO9RLlZCQVoIiOMRlHHAwDraiHA==
- pl###onts.ce.ms/gGqsUkyED8Y4awLplbQWtB2i5s0nyV2BDOYZWT2NYNYfhtxzzJAOLb4Pz2alVomrlH0sb8/tIN9q4WzLzyVtKqFKO2X5fnjuDXlWrxCT/hAZWMWrQa71HveOrXYIHOOGbWJ7P3KMKuQRoTNI68NU7v5mG6T+DqUhPmz1TknmDERV7kgmhfT7L8KozpUliheDhjGIGcQBfSM=
- DNS ASK pl###onts.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''