Technical Information
- <SYSTEM32>\net1.exe stop sharedaccess
- <SYSTEM32>\net.exe stop sharedaccess
- <Current directory>\krnln.fne
- %WINDIR%\krnln.fne
- <Current directory>\internet.fne
- %WINDIR%\internet.fne
- <Current directory>\sock.fne
- %WINDIR%\sock.fne
- <Current directory>\shell.fne
- %WINDIR%\shell.fne
- <Current directory>\eAPI.fne
- %WINDIR%\eAPI.fne
- <Current directory>\dp1.fne
- %WINDIR%\dp1.fne
- <Current directory>\EThread.fne
- %WINDIR%\EThread.fne
- <Current directory>\eImgConverter.fne
- %WINDIR%\eImgConverter.fne
- 'www.bc##oxa.com':80
- www.bc##oxa.com/zck/shell.rar
- www.bc##oxa.com/zck/krnln.rar
- www.bc##oxa.com/zck/spec.rar
- www.bc##oxa.com/zck/sock.rar
- www.bc##oxa.com/zck/internet.rar
- www.bc##oxa.com/zck/eAPI.rar
- www.bc##oxa.com/zck/dp1.rar
- www.bc##oxa.com/zck/EThread.rar
- www.bc##oxa.com/zck/eImgConverter.rar
- DNS ASK www.bc##oxa.com
- '<Private IP address>':1038