Technical Information
- %WINDIR%\syswow64\fltmc.exe
- %WINDIR%\syswow64\tswpfwrp.exe
- %WINDIR%\syswow64\setupsnk.exe
- %WINDIR%\time.ini
- <Current directory>\»»_·ô_öú_êö_sdlppquy.exe
- <DRIVERS>\etc\hosts
- <DRIVERS>\etc\hosts
- 'ba##u.com':80
- '11#.#1.136.99':8000
- '11#.#1.136.99':8000
- DNS ASK ba##u.com
- '%WINDIR%\syswow64\cmd.exe' /c echo Y|cacls "<DRIVERS>\etc\hosts" /t /p everyone:f' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c echo Y|cacls "<DRIVERS>\etc\hosts" /t /p everyone:r' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c echo Y|cacls "<DRIVERS>\etc\hosts" /t /p everyone:f
- '%WINDIR%\syswow64\cmd.exe' /S /D /c" echo Y"
- '%WINDIR%\syswow64\cacls.exe' "<DRIVERS>\etc\hosts" /t /p everyone:f
- '%WINDIR%\syswow64\cmd.exe' /c echo Y|cacls "<DRIVERS>\etc\hosts" /t /p everyone:r
- '%WINDIR%\syswow64\cacls.exe' "<DRIVERS>\etc\hosts" /t /p everyone:r
- '%WINDIR%\syswow64\fltmc.exe'