Technical Information
- <Current directory>\aa1u6vz.exe
- <Current directory>\config.ini
- from <Full path to file> to %TEMP%\aa1u6vz\....\aa1u6vz
- 'te##.##sthotel360.com':80
- 'ht##.##sthotel360.com':80
- http://te##.##sthotel360.com/001/puppet.Txt?11#####
- http://te##.##sthotel360.com/Data/jjeac5nolfy5qe3nv3nj5f3sva3ov57isac3yaeilyqayi7ysvlvfvvlnloiyoqcfisynsq37sasfs3i37yalqvavacvqieqq7s5fon32303231C4EA38D4C23331C8D53136CAB13532B7D636C3EB.txt?11#...
- http://te##.##sthotel360.com/001/Tips.txt?11#####
- http://ht##.##sthotel360.com/HttpApiGb.ashx?ac###################################################################################################################################################...
- http://ht##.##sthotel360.com/HttpApiGb.ashx?ac#################
- DNS ASK te##.##sthotel360.com
- DNS ASK ht##.##sthotel360.com
- ClassName: 'Progman' WindowName: 'Program Manager'
- ClassName: 'CrossFire' WindowName: ''
- '%WINDIR%\syswow64\ipconfig.exe' /flushdns