Technical Information
- %HOMEPATH%\Start Menu\Programs\Startup\Winhsvss link.lnk
- '%HOMEPATH%\hmnss.exe'
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\shell32.dll,OpenAs_RunDLL %HOMEPATH%\Indo-Naga.docx
- %TEMP%\~DF6677.tmp
- %HOMEPATH%\cric.vid
- %HOMEPATH%\hmnss.exe
- %HOMEPATH%\Indo-Naga.docx
- 'ca##nit.com':80
- http://ca##nit.com/fyudvhfjdhvdfj/erhdgvkjdfhgvjkdf.php?p=##############################################################################################
- DNS ASK ca##nit.com
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'EDIT' WindowName: ''