Technical Information
- %WINDIR%\serviceprofiles\localservice\appdata\roaming\microsoft\upnp device host\upnphost\udhisapi.dll
- %TEMP%\v.mp4
- %TEMP%\payload.exe
- 'js#####337.publicvm.com':5000
- DNS ASK js#####337.publicvm.com
- 'ff#2::c':1900
- '23#.#55.255.250':1900
- ClassName: '\MSITPro::EventQueue' WindowName: ''
- ClassName: 'Type32_Main_Window' WindowName: ''
- ClassName: 'WMPlayerApp' WindowName: ''
- '%TEMP%\payload.exe'
- '%ProgramFiles(x86)%\windows media player\wmplayer.exe' /Play -Embedding