Technical Information
- %TEMP%\20230925t223240_547.exe
- %TEMP%\20230925t223259_170.exe
- %TEMP%\20230925t223316_534.exe
- %TEMP%\20230925t223339_324.exe
- '20##########240_547.ltiapmyzmjxrvrts.info':80
- '20##########259_170.ltiapmyzmjxrvrts.info':80
- '20##########316_534.ltiapmyzmjxrvrts.info':80
- '20##########339_324.ltiapmyzmjxrvrts.info':80
- '20##########407_552.ltiapmyzmjxrvrts.info':80
- http://20##########240_547.ltiapmyzmjxrvrts.info/v4/20230925T223240_547.exe
- http://20##########259_170.ltiapmyzmjxrvrts.info/v4/20230925T223259_170.exe
- http://20##########316_534.ltiapmyzmjxrvrts.info/v4/20230925T223316_534.exe
- http://20##########339_324.ltiapmyzmjxrvrts.info/v4/20230925T223339_324.exe
- http://20##########407_552.ltiapmyzmjxrvrts.info/v4/20230925T223407_552.exe
- DNS ASK 20##########240_547.ltiapmyzmjxrvrts.info
- DNS ASK 20##########259_170.ltiapmyzmjxrvrts.info
- DNS ASK 20##########316_534.ltiapmyzmjxrvrts.info
- DNS ASK 20##########339_324.ltiapmyzmjxrvrts.info
- DNS ASK 20##########407_552.ltiapmyzmjxrvrts.info
- '%TEMP%\20230925t223240_547.exe'
- '%TEMP%\20230925t223259_170.exe'
- '%TEMP%\20230925t223316_534.exe'
- '%TEMP%\20230925t223339_324.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230925T223240_547.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230925T223259_170.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230925T223316_534.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230925T223339_324.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230925T223407_552.exe