Technical Information
- '%TEMP%\nsc2.tmp\DfQiETYQsuwsreQnxkHqRKTfHwUkd.exe' (downloaded from the Internet)
- '%TEMP%\nsc2.tmp\DfQiETYQsuwsreQnxkHqRKTfHwUkd.exe'
- %TEMP%\nsc2.tmp\DfQiETYQsuwsreQnxkHqRKTfHwUkd.exe
- %TEMP%\nsc2.tmp\INetC.dll
- %TEMP%\nsc2.tmp\INetC.dll
- %TEMP%\nsc2.tmp\DfQiETYQsuwsreQnxkHqRKTfHwUkd.exe
- 'fl####.bagamusement.bid':80
- http://fl####.bagamusement.bid/get2.php?se###############################
- DNS ASK fl####.bagamusement.bid