Technical Information
- http://da##rch.com/dimqlweyg/ridxsdls.php?ad########
- http://da##rch.com/dimqlweyg/ycgrzgozub.php?ad########
- http://da##rch.com/dimqlweyg/qhysq.php?ad########
- http://da##rch.com/dimqlweyg/dhojrcwrm.php?ad########
- http://da##rch.com/dimqlweyg/izqlfr.php?ad########
- http://da##rch.com/dimqlweyg/nezgb.php?ad########
- http://da##rch.com/dimqlweyg/mqupjickr.php?ad########
- http://da##rch.com/dimqlweyg/vzgbidyje.php?ad########
- http://da##rch.com/dimqlweyg/elpxep.php?ad########
- http://da##rch.com/dimqlweyg/cgbvd.php?ad########
- http://da##rch.com/dimqlweyg/pgaiqxwq.php?ad########
- http://da##rch.com/dimqlweyg/lctnltb.php?ad########
- http://da##rch.com/dimqlweyg/vadyjelgez.php?ad#################################################
- DNS ASK ca##azy.com
- DNS ASK da##rch.com
- '%WINDIR%\syswow64\cmd.exe' /c del <Full path to file> > nul' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c del <Full path to file> > nul