Technical Information
- %TEMP%\jdrnjshufbbm.js
- %TEMP%\ydgxlbm_74107.exe
- http://af###ityee.com/jkpziP
- http://li##ion.net/9cRXIl
- http://ko###rkum.org/Lntxhy
- http://am##sur.com/sJIEQB
- http://kw##b.it/tNTjZ2
- http://li##roup.ru/vV9c7l
- http://me####esign.info/o12QeD
- http://pg####unitycab.com/FAlx1b
- http://c-##r.at/QSa8sI
- http://ro###arita.com/5NmH3b
- http://pr#####toglass.co.nz/wMcW5Z
- DNS ASK af###ityee.com
- DNS ASK c-##r.at
- DNS ASK pg####unitycab.com
- DNS ASK ak##rd.com
- DNS ASK me####esign.info
- DNS ASK li##roup.ru
- DNS ASK pv###jekt.pl
- DNS ASK kw##b.it
- DNS ASK be##v24.ru
- DNS ASK ro###arita.com
- DNS ASK be######bersindallas.com
- DNS ASK am##sur.com
- DNS ASK me##kino.ru
- DNS ASK ko###rkum.org
- DNS ASK ba####nhatrang.xyz
- DNS ASK ca##le78.it
- DNS ASK mi#######press-randburg.co.za
- DNS ASK al###zatrio.com
- DNS ASK li##ion.net
- DNS ASK as####station.com
- DNS ASK pr#####toglass.co.nz
- '<SYSTEM32>\wscript.exe' %TEMP%\JDrNJshUFbbM.js