Technical Information
- %TEMP%\20230917t210135_467.exe
- '20##########135_467.ltiapmyzmjxrvrts.info':80
- '20##########220_687.ltiapmyzmjxrvrts.info':80
- http://20##########135_467.ltiapmyzmjxrvrts.info/v4/20230917T210135_467.exe
- http://20##########220_687.ltiapmyzmjxrvrts.info/v4/20230917T210220_687.exe
- DNS ASK 20##########135_467.ltiapmyzmjxrvrts.info
- DNS ASK 20##########220_687.ltiapmyzmjxrvrts.info
- '%TEMP%\20230917t210135_467.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230917T210135_467.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230917T210220_687.exe