Technical Information
- '%ProgramFiles(x86)%\internet explorer\iexplore.exe' http://au####tesystems.com/wp-content/plugins/shox/plug/plugin.php
- %HOMEPATH%\net.vbs
- %HOMEPATH%\net.vbs
- http://au####tesystems.com/wp-content/plugins/shox/plug/plugin.php
- DNS ASK se#.###update2012.com
- DNS ASK au####tesystems.com
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%WINDIR%\syswow64\wscript.exe' /B "%HOMEPATH%\net.vbs
- '%ProgramFiles(x86)%\internet explorer\iexplore.exe' http://au####tesystems.com/wp-content/plugins/shox/plug/plugin.php' (with hidden window)
- '%WINDIR%\syswow64\wscript.exe' /B "%HOMEPATH%\net.vbs' (with hidden window)