Technical Information
- %TEMP%\screenshot.jpg
- %TEMP%\fw1rdpdb.zip
- %TEMP%\information.txt
- %TEMP%\screenshot.jpg
- %TEMP%\information.txt
- http://ip##pi.com/line
- DNS ASK google.com
- DNS ASK ip##pi.com
- '%WINDIR%\syswow64\cmd.exe' /c del <Full path to file> > nul' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c del <Full path to file> > nul