Technical Information
- '%TEMP%\radfcc19.tmp'
- %TEMP%\radfcc19.tmp
- http://ic###-japan.net/.well-known/pki-validation/63m/c6013fht/2c.jpg
- DNS ASK ic###-japan.net
- '<SYSTEM32>\cmd.exe' /c %TEMP%\radFCC19.tmp' (with hidden window)
- '<SYSTEM32>\cmd.exe' /c %TEMP%\radFCC19.tmp