Technical Information
- %TEMP%\xixd3azco9hkt8b
- %TEMP%\xixd3azco9hkt8b.dll
- 'cm#.ro':80
- http://an####rstandard.com/p8b9x
- http://am######armand.perso.sfr.fr/kzp5dx
- http://cl###fmalw.ws/0lq45
- http://www.of####dhandel.de/yv815pa
- DNS ASK an####rstandard.com
- DNS ASK am######armand.perso.sfr.fr
- DNS ASK cl###fmalw.ws
- DNS ASK cm#.ro
- DNS ASK of####dhandel.de
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\XIXD3A~1.DLL,qwerty 323