Technical Information
- %TEMP%\{akgc-khrt2-a6wi-rmrbi}\20294236358.exe
- 'g-###tners.in':80
- DNS ASK g-###tners.in
- '%TEMP%\{akgc-khrt2-a6wi-rmrbi}\20294236358.exe'
- '%WINDIR%\syswow64\cmd.exe' /c start /I "" "%TEMP%\{aKgC-khRT2-a6wi-rMRbi}\20294236358.exe"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c start /I "" "%TEMP%\{aKgC-khRT2-a6wi-rMRbi}\49578859287.exe" /mix' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c start /I "" "%TEMP%\{aKgC-khRT2-a6wi-rMRbi}\72657743305.exe" /mix' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c start /I "" "%TEMP%\{aKgC-khRT2-a6wi-rMRbi}\20294236358.exe"
- '%WINDIR%\syswow64\cmd.exe' /c start /I "" "%TEMP%\{aKgC-khRT2-a6wi-rMRbi}\49578859287.exe" /mix
- '%WINDIR%\syswow64\cmd.exe' /c start /I "" "%TEMP%\{aKgC-khRT2-a6wi-rMRbi}\72657743305.exe" /mix