Technical Information
- firefox.exe
- %WINDIR%\otalm.txt
- %WINDIR%\wmsyspr9.obj
- %WINDIR%\wmsyspr9.obj
- '10#.#5.86.163':7777
- 'localhost':49179
- '10#.#5.86.164':7777
- '10#.#5.87.105':7777
- http://47.##.214.214:6666/038f219cc825180be3c351d050f80343.txt via 47.##.214.214
- http://61.###.60.69:6666/58ed45da67eb8b27f53aaa32b6ed6ed2.exe via 61.##0.60.69
- http://12#.##.57.162:7895/0a0027000037.txt via 12#.#5.57.162
- DNS ASK SP####z0.58guyu.com
- '<LOCALNET>.55.255':18692
- '12#.#5.57.162':7894
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "<Full path to file>"
- '%ProgramFiles(x86)%\mozilla firefox\firefox.exe'