Technical Information
- %WINDIR%\Tasks\{BA96B10A-C094-4EC3-B088-32A8E5FB4A07}.job
- %WINDIR%\Tasks\{09795B40-750E-4099-9F98-46D22D15A47F}.job
- '%TEMP%\<File name>.exe' /ver 1.1.5.26 e /fi {F865F68D-A6E8-4082-BA3F-D4FC51706F44}.txt
- '' (downloaded from the Internet)
- ClassName: '', WindowName: 'VBoxTrayToolWnd'
- ClassName: 'VBoxTrayToolWndClass', WindowName: ''
- %TEMP%\taskSched.txt
- <Current directory>\StubInstallerCleanUp.bat
- %TEMP%\nsh2.tmp
- %TEMP%\<File name>.exe
- %TEMP%\nsx3.tmp\NSIS_TaskScheduler.dll
- %TEMP%\nsx3.tmp\NSIS_AntiVmFraud.dll
- %TEMP%\nsx3.tmp\System.dll
- %TEMP%\nsx3.tmp\registry.dll
- %TEMP%\nsx3.tmp\nsisos.dll
- %TEMP%\nsx3.tmp\amisid.exe
- %WINDIR%\Tasks\{09795B40-750E-4099-9F98-46D22D15A47F}.job
- %TEMP%\nsx3.tmp\md5dll.dll
- %TEMP%\nsx3.tmp\inetc.dll
- %TEMP%\nsx3.tmp\NSIS_TaskScheduler.dll
- 'www.eg###dx.tech':80
- http://www.eg###dx.tech/info.php?id######################################
- DNS ASK www.eg###dx.tech