Technical Information
- firefox.exe
- %WINDIR%\otalm.txt
- %WINDIR%\wmsyspr9.obj
- %WINDIR%\wmsyspr9.obj
- %WINDIR%\wmsyspr9.obj
- '10#.#5.86.163':7777
- 'localhost':29861
- http://47.##.214.214:6666/3e7b52153c899a58295bd66326887289.txt via 47.##.214.214
- http://22#.##6.20.19:6666/1dfd4ea4b4f252f8af6f2a6b62853dcc.exe via 22#.#86.20.19
- http://12#.##.57.162:7896/0a0027000002.txt via 12#.#5.57.162
- http://22#.##6.20.19:7777/2dec393db9bac0ac879eff0a5075deae.zip via 22#.#86.20.19
- DNS ASK WD####Ds.58guyu.com
- DNS ASK no##.wb916.com
- '<LOCALNET>.2.255':18692
- '12#.#5.57.162':7891
- '12#.#5.57.162':8081
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\FirewallControlPanel.dll,ShowNotificationDialog /configure /ETOnly 0 /OnProfiles 6 /OtherAllowed 0 /OtherBlocked 0 /OtherEdgeAllowed 0 /NewBlocked 4 "<Full path to file>"
- '%ProgramFiles(x86)%\mozilla firefox\firefox.exe'