Technical Information
- %TEMP%\yoqmdrh.js
- %TEMP%\deedntj_7401.exe
- %TEMP%\deedntj_32219.exe
- http://fm##30.us/BznLrm
- http://re#####antjobs.co.uk/9cgwZ5
- http://re#####antjobs.co.uk/9cgwZ5/
- http://pu####afacile.it/JvZ9cX
- http://ri####ncoperu.org/B3AlqT
- http://pr#####toglass.co.nz/wMcW5Z
- http://kt###akis.com/UHqig6
- http://kt###akis.com/?la#####
- http://po###loki.ru/nbTURt
- http://po###loki.ru/404
- DNS ASK fm##30.us
- DNS ASK je###mpiotr.pl
- DNS ASK re#####antjobs.co.uk
- DNS ASK pu####afacile.it
- DNS ASK ri####ncoperu.org
- DNS ASK pr#####toglass.co.nz
- DNS ASK kt###akis.com
- DNS ASK be###basol.com
- DNS ASK po###loki.ru
- '<SYSTEM32>\wscript.exe' %TEMP%\yOqmdrH.js