Technical Information
- iebwyr.exe
- %PROGRAMDATA%\ajlgjpq\2a65260b3a2b4b47a0faac1113cea95b
- %PROGRAMDATA%\ajlgjpq\c5d25d5f25ce4736a02aef26dee6cf44
- %PROGRAMDATA%\eckvcjml\iebwyr.exe
- 'cu###yip.com':80
- http://ic###azip.com/
- http://ip##fo.io/ip
- http://bo#.####ismyipaddress.com/
- DNS ASK ic###azip.com
- DNS ASK ip##fo.io
- DNS ASK cu###yip.com
- DNS ASK bo#.####ismyipaddress.com
- '%PROGRAMDATA%\eckvcjml\iebwyr.exe'
- '%WINDIR%\microsoft.net\framework\v2.0.50727\cvtres.exe' -f "%TEMP%\tmpE730.tmp"
- '%WINDIR%\microsoft.net\framework\v2.0.50727\cvtres.exe' -f "%TEMP%\tmpE9A2.tmp"
- '%WINDIR%\microsoft.net\framework\v2.0.50727\cvtres.exe' -f "%TEMP%\tmp78C.tmp"