Technical Information
- %TEMP%\ic.exe
- %TEMP%\ic.exe (downloaded from the Internet)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\U98D4X8H\hb[1].exe
- %TEMP%\hb.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\ic[1].exe
- %TEMP%\ic.exe
- 'de###daturee.tk':80
- 'localhost':1035
- de###daturee.tk/file/hb.exe
- de###daturee.tk/file/ic.exe
- DNS ASK de###daturee.tk