Technical Information
- %APPDATA%\azmzbpi0fj\pdf阅读器.lnk
- C:\users\public\<File name>.exe
- %TEMP%\_config.exe
- %TEMP%\_config.inf
- %TEMP%\wdvrgjwwb4\_config.lnk
- %TEMP%\regworkshop.ini
- %TEMP%\_config.inf
- %TEMP%\_config.exe
- %TEMP%\wdvrgjwwb4\_config.lnk
- %TEMP%\regworkshop.ini
- '21#.#01.247.89':9090
- http://21#.##1.247.89:9090/config.exe via 21#.#01.247.89
- '%TEMP%\_config.exe' /s "%TEMP%\_config.inf"
- 'C:\users\public\<File name>.exe'