Technical Information
- %TEMP%\892.exe
- %WINDIR%\syswow64\windows-update-v11\winzip.scr
- %WINDIR%\syswow64\windows-update-v11\logs.txt
- %WINDIR%\syswow64\windows-update-v11\logs.txt
- '<LOCALNET>.1.3':81
- '%TEMP%\892.exe'
- '%TEMP%\892.exe' ' (with hidden window)
- '%ProgramFiles(x86)%\mozilla firefox\firefox.exe'