Technical Information
- <SYSTEM32>\cmd.exe /c <Current directory>\<Virus name>.bat
- firefox.exe
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings] 'ProxyEnable' = '00000001'
- <Current directory>\<Virus name>.bat
- 'www.fi###pintar.com':80
- www.fi###pintar.com/v1/.new/index.php
- DNS ASK www.fi###pintar.com