Technical Information
- %HOMEPATH%\Start Menu\Programs\Startup\48a66b2c3e879cffc1ae6ceabfdf580e.exe
- <SYSTEM32>\cmd.exe
- 'zc#####83477.xicp.net':1990
- 'us###.qzone.qq.com':80
- http://us###.qzone.qq.com/fcg-bin/cgi_get_portrait.fcg?ui############
- DNS ASK zc#####83477.xicp.net
- DNS ASK us###.qzone.qq.com
- '<SYSTEM32>\cmd.exe'