Technical Information
- <SYSTEM32>\tasks\data
- C:\users\public\downloads\hdpp.zip
- C:\users\public\downloads\date\temp.log
- C:\users\public\downloads\date\svcproxy.dll
- C:\users\public\downloads\date\task.dat
- C:\users\public\downloads\date\errhandle.dll
- C:\users\public\downloads\date\xb_base.exe
- C:\users\public\downloads\date\vmprotectsdk32.dll
- C:\users\public\desktop.log
- C:\users\public\downloads\hdpp.zip
- http://43.##9.24.202/9942.zip
- 'C:\users\public\downloads\date\xb_base.exe' -GetHFCWSPObj
- 'C:\users\public\downloads\date\xb_base.exe' -GetHFCWSPObj' (with hidden window)