Technical Information
- '<SYSTEM32>\cmd.exe' /x/d/c "start /B %TEMP%\mailkill.bat"
- '<SYSTEM32>\cmd.exe' /K %TEMP%\mailkill.bat
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\shell32.dll,OpenAs_RunDLL %TEMP%\V30_АУБчїш_№Ч_°ЎБ·_Зщ·ВѕчГј_ЗТАО_АМєҐЖ®_ЅЕГ»ј.docx
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE' -Embedding
- '<SYSTEM32>\cmd.exe' /x/d/c "start /B %TEMP%\V30_АУБчїш_№Ч_°ЎБ·_Зщ·ВѕчГј_ЗТАО_АМєҐЖ®_ЅЕГ»ј.docx"
- %TEMP%\pdk-%USERNAME%-2848\sample1.docx
- %TEMP%\pdk-%USERNAME%\cd888526634b9e8560d77a14148afc4e\OLE.dll
- <Current directory>\V30_АУБчїш_№Ч_°ЎБ·_Зщ·ВѕчГј_ЗТАО_АМєҐЖ®_ЅЕГ»ј.docx
- %TEMP%\pdk-%USERNAME%\e6713c662e109352e31e1a3c23e02d07\Win32.dll
- %TEMP%\pdk-%USERNAME%\b788af3f2dc826a1c843dd0b2fa25dab\Util.dll
- %TEMP%\pdk-%USERNAME%\f3be3942e0e5c455be6bd25bf2173265\Console.dll
- %TEMP%\pdk-%USERNAME%\fb6f7371124f3317af5cb3e013b67582\perl514.dll
- %TEMP%\pdk-%USERNAME%\c68d0db1b03832fd2752426a45e78b52\KR.dll
- %TEMP%\pdk-%USERNAME%\d883a9ddf918c1198e02c650d2cc4b23\Encode.dll
- %TEMP%\pdk-%USERNAME%-2848\sample1.docx
- 'localhost':1036
- ClassName: 'MS_WebcheckMonitor' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: '' WindowName: ''