Technical Information
- %TEMP%\nkse5ov8gl6um.dll
- http://af####ntickets.de/93fxk05
- http://dw###mong.net/5zm8b
- http://ad#3.pt/18ljogc
- DNS ASK di####butorsite.com
- DNS ASK af####ntickets.de
- DNS ASK dw###mong.net
- DNS ASK ad#3.pt
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\NKSE5O~1.DLL,0001