Technical Information
- C:\temp.ini
- %TEMP%\5xlczz7z.dll
- %TEMP%\1m45f.exe
- 'no##.youdao.com':443
- '15#.#09.120.142':8180
- 'la##ous.com':443
- 's9#.#nzz.com':443
- 'z4.#nzz.com':443
- 'cn##.mmstat.com':443
- DNS ASK no##.youdao.com
- DNS ASK la##ous.com
- DNS ASK microsoft.com
- DNS ASK s9#.#nzz.com
- DNS ASK z4.#nzz.com
- DNS ASK c.##zz.com
- DNS ASK cn##.mmstat.com
- ClassName: '' WindowName: 'Microsoft Internet Explorer'
- ClassName: 'DDEMLMom' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%TEMP%\1m45f.exe'
- '%TEMP%\1m45f.exe' ' (with hidden window)