Technical Information
- '<SYSTEM32>\taskkill.exe' /FI "IMAGENAME eq fiddler*" /IM * /F /T
- ClassName: '', WindowName: 'The Wireshark Network Analyzer'
- nul
- from <Full path to file> to <Current directory>\g9s0hb7h.exe
- 'localhost':49173
- 'localhost':49175
- 'localhost':49176
- 'ca##h.me':443
- DNS ASK ca##h.me
- ClassName: 'WinDbgFrameClass' WindowName: ''
- ClassName: '' WindowName: 'Progress Telerik Fiddler Web Debugger'
- ClassName: '' WindowName: 'Fiddler'
- ClassName: '' WindowName: 'HTTP Debugger'
- ClassName: '' WindowName: 'x64dbg'
- ClassName: '' WindowName: 'Process Monitor'
- ClassName: '' WindowName: 'http'
- ClassName: '' WindowName: 'Bypass'
- ClassName: '' WindowName: 'ZeraX'
- ClassName: '' WindowName: 'GayCrack'
- ClassName: '' WindowName: 'BandCrack'
- ClassName: '' WindowName: 'NIGGER CRACK'
- ClassName: '' WindowName: ''
- '<SYSTEM32>\cmd.exe' /c @RD /S /Q "%LOCALAPPDATA%\Microsoft\Windows\INetCache\IE" >nul 2>&1
- '<SYSTEM32>\cmd.exe' /c color b
- '<SYSTEM32>\cmd.exe' /c SystemSettingsAdminFlows.exe SetInternetTime 1 >nul 2>&1
- '<SYSTEM32>\cmd.exe' /c taskkill /FI "IMAGENAME eq fiddler*" /IM * /F /T >nul 2>&1