Technical Information
- %TEMP%\rgqfzbgnbptc3
- %TEMP%\rgqfzbgnbptc3.dll
- http://ka###it.szm.com/vipzq8
- http://www.jr###rez.com/c3erjl
- http://re#####f-rage.heimat.eu/buxprxv
- DNS ASK ka###it.szm.com
- DNS ASK tw####pitals.com
- DNS ASK jr###rez.com
- DNS ASK ti###obuymlw.in
- DNS ASK re#####f-rage.heimat.eu
- DNS ASK he#m.at
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\RGQFZB~1.DLL,qwerty 323