Technical Information
- firefox.exe
- %WINDIR%\otalm.txt
- %WINDIR%\wmsyspr9.obj
- %WINDIR%\wmsyspr9.obj
- '<LOCALNET>.56.30':18691
- '10#.#5.87.105':7777
- 'localhost':49179
- '10#.#5.86.164':7777
- http://12#.##9.36.209:6666/66436b071bdd153dec04f634058d8677.txt via 12#.#99.36.209
- http://61.###.11.179:6666/1afd0022b3e432f6fdf6c80fb5857526.exe via 61.##0.11.179
- http://47.##.220.198:7890/0a0027000038.txt via 47.##.220.198
- DNS ASK qm##.#dkuai8.com
- '<LOCALNET>.56.255':18691
- '47.##.220.198':7897
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "<Full path to file>"
- '%ProgramFiles(x86)%\mozilla firefox\firefox.exe'