Technical Information
- %TEMP%\mepvsscyuuj.gem
- %TEMP%\vxlsvlvpuv.txt
- http://ad#.#ensa.at/api1/zjD_2B1hYhp5/HUhyzV_2F5C/BfHAddhNDG6xFr/uCFdFQV4rm_2F2wrfSdJB/sSms4XDo8htzFsVZ/OvM2Krym4OK3uTu/tNpvluH_2Bw5mCh8qO/9IB1odRNR/ffqm6ngv96Tn_2FK6Sub/yv2arxfcfRxcuXMItvA/aW2...
- http://no##.calag.at/api1/hGE4MrSB_/2FA3oOzRjHx77_2Bng8k/faobleSHlLe8jxkg9Bb/V8596sp91IxSgdjNCV991c/R8VJrBRqSXihJ/1IaOhr7x/8EvgypilOFtCARXlzmHL1n5/ppuvRc7vGp/sRFkch21FaIh1Txqz/FFYOWnRuMaxB/472_...
- DNS ASK ad#.#ensa.at
- DNS ASK no##.calag.at
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '<SYSTEM32>\regsvr32.exe' -s %TEMP%\\VxlsVLvPUv.txt