Technical Information
- <DRIVERS>\etc\hosts
- '<DNS_SERVER>':80
- DNS ASK a.##dlq.com
- DNS ASK b.##dlq.com
- DNS ASK c.##dlq.com
- DNS ASK pT#.#hdlq.com
- ClassName: '' WindowName: 'GINA Logon'
- '<SYSTEM32>\cmd.exe' /c rd "<DRIVERS>\etcAB1MQ" /S /Q' (with hidden window)
- '<SYSTEM32>\cmd.exe' /c rd "<DRIVERS>\etcAB1MQ" /S /Q