Technical Information
- rsjad.exe
- %TEMP%\lnqprhneok.gm
- %TEMP%\lvilbbifq.yf
- %TEMP%\rsjad.exe
- %ALLUSERSPROFILE%\remcos\logs.dat
- 'we####yman.ddns.me':39360
- 'ge###ugin.net':80
- http://ge###ugin.net/json.gp
- 'we####yman.ddns.me':39360
- DNS ASK we####yman.ddns.me
- DNS ASK ge###ugin.net
- '%TEMP%\rsjad.exe'