Technical Information
- <Current directory>\4sr3jtjm.exe
- <Current directory>\4sr3jtjm.exe (downloaded from the Internet)
- <Current directory>\4sr3jtjm.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\adrm4[1].exe
- <Current directory>\4sr3jtjm.exe
- 'vi####iagaytan.com':80
- 'localhost':1036
- vi####iagaytan.com/images/adrm4.exe
- DNS ASK vi####iagaytan.com