Technical Information
- %HOMEPATH%\documents\d7680781
- %HOMEPATH%\documents\å¦áª½å¹é2irc0qbcg.exe
- %HOMEPATH%\documents\123.bat
- %TEMP%\okyes.wav
- %HOMEPATH%\documents\123.bat
- <DRIVERS>\etc\hosts
- <DRIVERS>\etc\lmhosts.sam
- from %HOMEPATH%\documents\å¦áª½å¹é2irc0qbcg.exe to %HOMEPATH%\documents\Гßõ𾶺ö7e251k5173
- '12#.#5.199.101':80
- '%HOMEPATH%\documents\å¦áª½å¹é2irc0qbcg.exe'
- '%WINDIR%\syswow64\cmd.exe' /c 123.bat' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c 123.bat