Technical Information
- '' (downloaded from the Internet)
- %TEMP%\sjhitgnd_005.exe
- <Full path to file>
- '12#.#7.29.201':8006
- 'dl.###ynnrb.club':80
- http://dl.###ynnrb.club/d/sjhitgnd_005.exe
- DNS ASK dl.###ynnrb.club
- '%TEMP%\sjhitgnd_005.exe'
- '<SYSTEM32>\cmd.exe' /c del "<Full path to file>"