Technical Information
- '%WINDIR%\syswow64\taskkill.exe' /F /IM "upjers Playground.exe" /T
- '%WINDIR%\syswow64\taskkill.exe' /F /IM "upjers Home.exe" /T
- %TEMP%\upjershome.txt
- %WINDIR%\temp\cab123d.tmp
- %WINDIR%\temp\tar123e.tmp
- %TEMP%\upjershome.exe
- %WINDIR%\temp\cab123d.tmp
- %WINDIR%\temp\tar123e.tmp
- 'up#####oad.wavecdn.net':443
- http://st####.rapidssl.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRhhZrQET0hvbSHUJmNfBKqR%2FiT7wQUU8oXWfxrwAMhLxqu5KqoHIJW2nUCEAa3yvNwSDzAbs5dmShplkM%3D
- http://st####.rapidssl.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRhhZrQET0hvbSHUJmNfBKqR%2FiT7wQUU8oXWfxrwAMhLxqu5KqoHIJW2nUCEA4i2TFcTiRj6lyZSL%2FcTvY%3D
- DNS ASK de.##jers.com
- DNS ASK st####.rapidssl.com
- DNS ASK up#######-assets.wavecdn.net
- DNS ASK up#####oad.wavecdn.net
- ClassName: '' WindowName: ''
- '%WINDIR%\syswow64\taskkill.exe' /F /IM "upjers Playground.exe" /T' (with hidden window)
- '%WINDIR%\syswow64\taskkill.exe' /F /IM "upjers Home.exe" /T' (with hidden window)