Technical Information
- %TEMP%\hr5w9tdd
- %TEMP%\hr5w9tdd.dll
- 'cm#.ro':80
- http://cl###fmalw.ws/0lq45
- http://am######armand.perso.sfr.fr/kzp5dx
- http://www.of####dhandel.de/yv815pa
- http://an####rstandard.com/p8b9x
- DNS ASK cl###fmalw.ws
- DNS ASK am######armand.perso.sfr.fr
- DNS ASK of####dhandel.de
- DNS ASK an####rstandard.com
- DNS ASK cm#.ro
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\Hr5W9Tdd.dll,qwerty 323