Technical Information
- '<SYSTEM32>\taskkill.exe' /IM "winword.exe" /F
- http://ma##r.info/xzxit
- C:\game_lods\groters.cmd
- C:\game_lods\groters.cmd
- http://ma##r.info/Xzxit
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- http://be####rvices.co.uk/client.exe
- DNS ASK ma##r.info
- DNS ASK ip###ger.org
- DNS ASK microsoft.com
- DNS ASK be####rvices.co.uk
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c ""C:\Game_Lods\Groters.cmd" "' (with hidden window)
- '<SYSTEM32>\cmd.exe' /c ""C:\Game_Lods\Groters.cmd" "
- '<SYSTEM32>\timeout.exe' /T 10