Technical Information
- %TEMP%\20230926t015902_949.exe
- '20##########902_949.ltiapmyzmjxrvrts.info':80
- '20##########007_991.ltiapmyzmjxrvrts.info':80
- http://20##########902_949.ltiapmyzmjxrvrts.info/v4/20230926T015902_949.exe
- http://20##########007_991.ltiapmyzmjxrvrts.info/v4/20230926T020007_991.exe
- DNS ASK 20##########902_949.ltiapmyzmjxrvrts.info
- DNS ASK 20##########007_991.ltiapmyzmjxrvrts.info
- '%TEMP%\20230926t015902_949.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T015902_949.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T020007_991.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230926T020118_206.exe