Technical Information
- %WINDIR%\explorer.exe
- %TEMP%\73slga7q1awos
- %TEMP%\diejc.dll
- 'ri####ousrye.com':80
- 'xz##dz.com':80
- DNS ASK ri####ousrye.com
- DNS ASK xz##dz.com
- DNS ASK wo######hroughpodcast.com
- '%WINDIR%\syswow64\svchost.exe'
- '%WINDIR%\syswow64\cmstp.exe'
- '%WINDIR%\syswow64\cmd.exe' del "%WINDIR%\SysWOW64\svchost.exe"