Technical Information
- %TEMP%\20230916t040709_717.exe
- %TEMP%\20230916t040742_924.exe
- %TEMP%\20230916t040813_154.exe
- '20##########709_717.ltiapmyzmjxrvrts.info':80
- '20##########742_924.ltiapmyzmjxrvrts.info':80
- '20##########813_154.ltiapmyzmjxrvrts.info':80
- '20##########845_467.ltiapmyzmjxrvrts.info':80
- http://20##########709_717.ltiapmyzmjxrvrts.info/v4/20230916T040709_717.exe
- http://20##########742_924.ltiapmyzmjxrvrts.info/v4/20230916T040742_924.exe
- http://20##########813_154.ltiapmyzmjxrvrts.info/v4/20230916T040813_154.exe
- http://20##########845_467.ltiapmyzmjxrvrts.info/v4/20230916T040845_467.exe
- DNS ASK 20##########709_717.ltiapmyzmjxrvrts.info
- DNS ASK 20##########742_924.ltiapmyzmjxrvrts.info
- DNS ASK 20##########813_154.ltiapmyzmjxrvrts.info
- DNS ASK 20##########845_467.ltiapmyzmjxrvrts.info
- '%TEMP%\20230916t040709_717.exe'
- '%TEMP%\20230916t040742_924.exe'
- '%TEMP%\20230916t040813_154.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230916T040709_717.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230916T040742_924.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230916T040813_154.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230916T040845_467.exe