Technical Information
- '' (downloaded from the Internet)
- C:\users\public\documents\demo.txt
- C:\users\public\documents\1.rar
- C:\users\public\documents\7z.exe
- C:\users\public\documents\jdi.lnk
- C:\users\public\documents\chromeuserinfo.dll
- C:\users\public\documents\rundll3222.exe
- C:\users\public\documents\svchost.txt
- C:\users\public\documents\360.dll
- C:\users\public\documents\1.lnk
- C:\users\public\jc.bat
- C:\users\public\documents\1.rar
- C:\users\public\documents\7z.exe
- C:\users\public\documents\jdi.lnk
- '20#.#.123.97':6547
- '15#.#9.249.144':8888
- http://20#.#.123.97:6547/7 via 20#.#.123.97
- '15#.#9.249.144':8888
- ClassName: 'CTXOPConntion_Class' WindowName: ''
- 'C:\users\public\documents\7z.exe' x 1.rar -o+
- 'C:\users\public\documents\rundll3222.exe' 360.dll,StartVm -a
- 'C:\users\public\documents\7z.exe' x 1.rar -o+' (with hidden window)
- 'C:\users\public\documents\rundll3222.exe' 360.dll,StartVm -a' (with hidden window)
- '<SYSTEM32>\cmd.exe' /c C:\Users\Public\jc.bat' (with hidden window)
- '<SYSTEM32>\cmd.exe' /c C:\Users\Public\jc.bat
- '<SYSTEM32>\tasklist.exe'
- '<SYSTEM32>\find.exe' /i "rundll3222.exe"