Technical Information
- '%WINDIR%\filedown_289731.exe' (downloaded from the Internet)
- '%WINDIR%\2345pic_lm_502884_v6.3.7488_silent.exe' (downloaded from the Internet)
- '%WINDIR%\filedown_289731.exe'
- '%WINDIR%\2345pic_lm_502884_v6.3.7488_silent.exe'
- %WINDIR%\filedown_289731.exe
- %WINDIR%\2345pic_lm_502884_v6.3.7488_silent.exe
- 'do####ad.2345.cn':80
- '18#.#0.200.160':8080
- 'do####ad.2345.com':80
- 'www.90##pa.cc':8080
- http://do####ad.2345.cn/background/filedown_289731.exe
- http://do####ad.2345.com/unionpic/2345pic_lm_502884_v6.3.7488_silent.exe
- DNS ASK do####ad.2345.cn
- DNS ASK www.90##pa.cc
- DNS ASK do####ad.2345.com