Technical Information
- %TEMP%\is-0bv68.tmp\<File name>.tmp
- %TEMP%\is-gq6ph.tmp\_isetup\_setup64.tmp
- %TEMP%\is-gq6ph.tmp\sqlite3.dll
- %TEMP%\is-gq6ph.tmp\et.exe
- http://gr###log.club/v2/events
- DNS ASK gr###log.club
- '%TEMP%\is-0bv68.tmp\<File name>.tmp' /SL5="$B0232,3602270,780800,<Full path to file>"
- '%TEMP%\is-gq6ph.tmp\et.exe' 4ea5782c10d14ed1e23085186a0acedb