Technical Information
- '' (downloaded from the Internet)
- C:\-1998166001
- C:\gtnw.exe
- C:\fjgghgjw.exe
- C:\vcmqtpi.exe
- C:\gaai.exe
- C:\jdypgmof.exe
- C:\onvt.exe
- <Full path to file>
- 'cd###bhfzz.com':80
- http://cd###bhfzz.com/progs/ijtkklp/gtgllc.php?ad########
- http://cd###bhfzz.com/progs/ijtkklp/jgttyyld.php
- http://cd###bhfzz.com/progs/ijtkklp/pcguuyzd.php
- http://cd###bhfzz.com/progs/ijtkklp/abbct.php
- http://cd###bhfzz.com/progs/ijtkklp/raeswxxo.php
- http://cd###bhfzz.com/progs/ijtkklp/ivwwnf.php
- http://cd###bhfzz.com/progs/ijtkklp/hrvvjn
- http://cd###bhfzz.com/progs/ijtkklp/llmzqrv.php?ad#############################################
- DNS ASK cd###bhfzz.com
- 'C:\gtnw.exe'
- 'C:\fjgghgjw.exe'
- 'C:\vcmqtpi.exe'
- 'C:\gaai.exe'
- 'C:\jdypgmof.exe'
- 'C:\onvt.exe'
- '<SYSTEM32>\cmd.exe' /c del <Full path to file> > nul