Technical Information
- '%TEMP%\4b0820c8_.exe'
- '%TEMP%\77e41067_.exe' /enc 0lzaIqog32irVzNsurBa8gClHri4ohwLj2JOmYir1BRMHtYRzSujO1eGCxmFy9qgP894N9JNetLsR/pCfpcbDKnMaIxuGuNDd/8gp8tHh4CDTjMvamPrRWzy9kANkkDF8e57wgsdPg1l1oPZdF0PMuz33hMZn9OAZzFXxJT6QKwiPtjb93Ic5754fEfi...
- '%TEMP%\76b14a94_.exe'
- '%TEMP%\77e41067_.exe' (downloaded from the Internet)
- '%TEMP%\76b14a94_.exe' (downloaded from the Internet)
- '%TEMP%\4b0820c8_.exe' (downloaded from the Internet)
- %TEMP%\77e41067_.exe
- %TEMP%\4b0820c8_.exe
- %TEMP%\76b14a94_.exe
- 's.####pingchip.info':80
- 'su#####.shoppingchip.info':80
- 'do######.shoppingchip.info':80
- http://s.####pingchip.info/
- http://su#####.shoppingchip.info/
- http://do######.shoppingchip.info/?e=#########################################################################
- DNS ASK s.####pingchip.info
- DNS ASK su#####.shoppingchip.info
- DNS ASK do######.shoppingchip.info