Technical Information
- %TEMP%\mznzk.js
- %TEMP%\qmjijnr_37793.exe
- %TEMP%\qmjijnr_25554.exe
- %TEMP%\qmjijnr_93140.exe
- http://ro##tte.ro/aDOLTG
- http://sh###lovers.com/PT5bdR
- http://fr##a58.ru/5OIxZh
- http://fo###m-bg.com/g9zV13
- http://ea####tshop.com.br/fkboKu
- http://na##om.com/6K13lL
- http://tu####citytour.com/SxOi2P
- http://fl###gcarts.com/l17p36
- http://ir##ems.com/Cg6yib
- http://go###zon.com/6WcNjA
- http://ti###fly.com/L5IJDi
- http://ha##tto.com/Syik4D
- http://ma###elight.com/JBmCpi
- DNS ASK te########dofgiftsandbargains.co.uk
- DNS ASK ra#####chiavon.com.br
- DNS ASK sa####boutique.com
- DNS ASK ha##tto.com
- DNS ASK hh##.#x3webs.com
- DNS ASK bb##aar.us
- DNS ASK ti###fly.com
- DNS ASK go###zon.com
- DNS ASK ir##ems.com
- DNS ASK fl###gcarts.com
- DNS ASK tu####citytour.com
- DNS ASK re#####rsinsandiego.com
- DNS ASK na##om.com
- DNS ASK fo###m-bg.com
- DNS ASK fr##a58.ru
- DNS ASK li###orms.com
- DNS ASK ne###ws.com.br
- DNS ASK sh###lovers.com
- DNS ASK di#####tbandmerch.com
- DNS ASK se###ecarts.com
- DNS ASK xn#######hcndlfakh0a9o.xn--p1ai
- DNS ASK ro##tte.ro
- DNS ASK cr####ljoias.com.br
- DNS ASK ea####tshop.com.br
- DNS ASK ma###elight.com
- '<SYSTEM32>\wscript.exe' %TEMP%\mzNzK.js