Technical Information
- '<Current directory>\jre.exe' (downloaded from the Internet)
- '<Current directory>\jre.exe' /s
- '<SYSTEM32>\cmd.exe' /c jre.exe /s
- <Current directory>\jre.exe.tmp
- <Current directory>\jre.exe
- from <Current directory>\jre.exe.tmp to <Current directory>\jre.exe
- 'no##.youdao.com':80
- http://no##.youdao.com/yws/public/resource/49a9fdeba4f56c2627a2ed701c0112b8/A9A0E50319C44C00AD1FB5FCABDFC940
- DNS ASK no##.youdao.com
- ClassName: 'Shell_TrayWnd' WindowName: ''