Technical Information
- %WINDIR%\explorer.exe
- %TEMP%\nshcc06.tmp
- %TEMP%\nsrcc45.tmp\vbk7np8el31n.dll
- 'gi####arkleys.com':80
- 'in##or.life':80
- 'di######thopedicclinic.com':80
- DNS ASK al###npan.asia
- DNS ASK gi####arkleys.com
- DNS ASK in##or.life
- DNS ASK di######thopedicclinic.com
- '%WINDIR%\syswow64\netsh.exe'