Technical Information
- %TEMP%\is-o4dmm.tmp\<File name>.tmp
- %TEMP%\is-rlenm.tmp\_isetup\_setup64.tmp
- %TEMP%\is-rlenm.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-rlenm.tmp\gole.dll
- 'rp.###ohokolo.com':80
- http://ka###.#3.amazonaws.com/muluceneb
- http://rp.###asasahas.com/?v=##################
- http://rp.###ohokolo.com/?v=##################
- DNS ASK rp.###asasahas.com
- DNS ASK ka###.#3.amazonaws.com
- DNS ASK rp.###ohokolo.com
- '%TEMP%\is-o4dmm.tmp\<File name>.tmp' /SL5="$C022C,216476,56832,<Full path to file>"