Technical Information
- %TEMP%\20230926t031057_575.exe
- '20##########057_575.ltiapmyzmjxrvrts.info':80
- '20##########127_431.ltiapmyzmjxrvrts.info':80
- http://20##########057_575.ltiapmyzmjxrvrts.info/v4/20230926T031057_575.exe
- http://20##########127_431.ltiapmyzmjxrvrts.info/v4/20230926T031127_431.exe
- DNS ASK 20##########057_575.ltiapmyzmjxrvrts.info
- DNS ASK 20##########127_431.ltiapmyzmjxrvrts.info
- '%TEMP%\20230926t031057_575.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T031057_575.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T031127_431.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T031208_327.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T031241_311.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T031308_291.exe