Technical Information
- <Current directory>\d7aabmlf.exe
- <Current directory>\config.ini
- from <Full path to file> to %TEMP%\d7aabmlf\....\d7aabmlf
- 'te##.##sthotel360.com':80
- 'ht##.##sthotel360.com':80
- http://te##.##sthotel360.com/001/puppet.Txt?99####
- http://te##.##sthotel360.com/Data/Y6ClCJE6JlC6AS4C2YJlSYYNA24O1lJAS1CQAVOOJ4EY4l2El41YJYY1CY4Q1JCO4AEC614AOVQN6YLY2LJO164VCLQ6VOQO2l4VSQAAAYSCLSJ2YC1AQSN432303231C4EA39D4C232C8D535CAB13131B7D63...
- http://te##.##sthotel360.com/001/Tips.txt?10#####
- DNS ASK te##.##sthotel360.com
- DNS ASK ht##.##sthotel360.com
- ClassName: 'Progman' WindowName: 'Program Manager'
- ClassName: 'CrossFire' WindowName: ''
- '%WINDIR%\syswow64\ipconfig.exe' /flushdns