Technical Information
- %HOMEPATH%\Start Menu\Programs\Startup\Explorer.lnk
- '%APPDATA%\svchost.exe'
- %APPDATA%\svchost.exe
- 'bb###otv.biz':80
- 'qk#####dfiwqlhpae.work':80
- 'df####ttqsvcgcl.pw':80
- 'qh##cahs.ru':80
- 'wm####wnfncmmn.ru':80
- '21#.#2.199.244':80
- '14#.#02.52.215':80
- 'bc####jnwqedd.info':80
- 'kf####hxbxdyl.work':80
- 'do###lrb.click':80
- http://bb###otv.biz/apache_handler.php
- http://qk#####dfiwqlhpae.work/apache_handler.php
- http://df####ttqsvcgcl.pw/apache_handler.php
- http://qh##cahs.ru/apache_handler.php
- http://wm####wnfncmmn.ru/apache_handler.php
- http://21#.#2.199.244/apache_handler.php
- http://14#.#02.52.215/apache_handler.php
- http://bc####jnwqedd.info/apache_handler.php
- http://kf####hxbxdyl.work/apache_handler.php
- http://do###lrb.click/apache_handler.php
- DNS ASK df####ttqsvcgcl.pw
- DNS ASK bb###otv.biz
- DNS ASK qh##cahs.ru
- DNS ASK wm####wnfncmmn.ru
- DNS ASK do###lrb.click
- DNS ASK bc####jnwqedd.info
- DNS ASK qk#####dfiwqlhpae.work
- DNS ASK kf####hxbxdyl.work