Technical Information
- eqeookkh.exe
- %TEMP%\qrjatydimo.tmp
- %TEMP%\fugclqurclqe.tmp
- %APPDATA%\microsoft\dgewhxigik\0a90f761
- %TEMP%\cdrhvqsuwbvntm.tmp
- %APPDATA%\microsoft\dgewhxigik\0a90fb49
- %TEMP%\ryktdlwixoqlds.tmp
- %WINDIR%\syswow64\0a90b4fa
- %WINDIR%\syswow64\eqeookkh.exe
- %TEMP%\qrjatydimo.tmp
- %TEMP%\fugclqurclqe.tmp
- %TEMP%\cdrhvqsuwbvntm.tmp
- %TEMP%\ryktdlwixoqlds.tmp
- http://www.ba##u.com/
- http://ve#.#####ingjunylawyerfc.com/Version.ini
- http://cf#.#tlswd.com/Config.ini
- http://co##.##a-bocconi.com/Hsvt.dat
- http://co##.##a-bocconi.com/Hds.dat
- DNS ASK ba##u.com
- DNS ASK ve#.#####ingjunylawyerfc.com
- DNS ASK cf#.#tlswd.com
- DNS ASK co##.##a-bocconi.com