Technical Information
- <SYSTEM32>\rundll32.exe ""%TEMP%\ins1.tmp"",jzzcmhvu install
- %TEMP%\ins1.tmp
- 'me###nes.ce.ms':80
- me###nes.ce.ms/UUSADRoNEDANGgypOSE1IwrWakJZ11xa5+xEwXCAmPJ4hpaj5O34pk3E1d9dBwDVjbcsxJgNbWjlVIFPJAYeQehNrypxWYrHh2mmnHadNfbeRg==
- me###nes.ce.ms/GwHHTkxbIB82h26WGr77fbP8u9XNPPobDEyOEyiSvP6gENZf44c/wf8njzcXwhb2zcBTcu75h4FTSPWhpxiQM4kKUuTq7x8f6mt7/jDj7cxbgDXzAjqhIPZP9loKVBBeLHNbuByN3YSAhoBh8lovcueHrbXYCYIMVfLmzy/oPAAc1iKHyrHUp2KXIDwJ/Xa8m16LhmLpDVQ=
- DNS ASK me###nes.ce.ms
- ClassName: 'Shell_TrayWnd' WindowName: ''