Technical Information
- '' (downloaded from the Internet)
- %TEMP%\ownz.exe
- %TEMP%\ownz.exe
- <Full path to file>
- 'ya##o.es':80
- 'wp#d':80
- http://www.ya##o.es/useragent.exe via ya##o.es
- http://11#.#11.111.1/wpad.dat via wp#d
- DNS ASK www.ya##o.es
- DNS ASK wp#d
- '%TEMP%\ownz.exe'
- '<SYSTEM32>\ping.exe' 1.1.1.1 -n 1 -w 900
- '<SYSTEM32>\ping.exe' 1.1.1.1 -n 1 -w 100
- '<SYSTEM32>\cmd.exe' /C ping 1.1.1.1 -n 1 -w 100 > Nul & Del "<Full path to file>"& ping 1.1.1.1 -n 1 -w 900 > Nul & Del "<Full path to file>"