Technical Information
- %TEMP%\1pzqza8gobmp
- %TEMP%\1pzqza8gobmp.dll
- http://ge##tech.at/voqq3jes
- http://cl###fmalw.ws/0lq45
- http://cy#####hop.web.fc2.com/lda4fj7a
- http://ba#######story.portalstream.net/9654ntqg
- DNS ASK ge##tech.at
- DNS ASK cl###fmalw.ws
- DNS ASK cy#####hop.web.fc2.com
- DNS ASK ba#######story.portalstream.net
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\1PZQZA~1.DLL,qwerty 323