Technical Information
- iexplore.exe
- %APPDATA%\java.exe
- %APPDATA%\java.exe
- http://www.google.com/index.php
- http://pa###bin.com/raw.php?i=########
- DNS ASK google.com
- DNS ASK pa###bin.com
- '%APPDATA%\java.exe' wooot
- '%WINDIR%\syswow64\cmd.exe' /k ping -n 5 127.0.0.1 && del "<Full path to file>" >> nul' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /k ping -n 5 127.0.0.1 && del "<Full path to file>" >> nul
- '%WINDIR%\syswow64\ping.exe' -n 5 127.0.0.1
- '%ProgramFiles(x86)%\internet explorer\iexplore.exe'