Technical Information
- %HOMEPATH%\xqtfsujyuovpgtnjgsbkclpiwakl
- 'microsoft.com':80
- '74.##1.28.178':6606
- '74.##1.28.178':6606
- DNS ASK mm####idbhmibnr.ml
- DNS ASK microsoft.com
- '%WINDIR%\syswow64\cmd.exe' /c timeout 1' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c timeout 1
- '%WINDIR%\syswow64\timeout.exe' 1