Technical Information
- %TEMP%\20230913t022656_749.exe
- '20##########656_749.ltiapmyzmjxrvrts.info':80
- '20##########727_039.ltiapmyzmjxrvrts.info':80
- http://20##########656_749.ltiapmyzmjxrvrts.info/v4/20230913T022656_749.exe
- http://20##########727_039.ltiapmyzmjxrvrts.info/v4/20230913T022727_039.exe
- DNS ASK 20##########656_749.ltiapmyzmjxrvrts.info
- DNS ASK 20##########727_039.ltiapmyzmjxrvrts.info
- '%TEMP%\20230913t022656_749.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230913T022656_749.exe