Technical Information
- <File name>.exe
- %TEMP%\<File name>.exe
- %TEMP%\<File name>.exe
- 'ch####p.dyndns.org':80
- 'fr###eoip.app':443
- 'sm##.mail.de':587
- 'microsoft.com':80
- http://ch####p.dyndns.org/
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- 'fr###eoip.app':443
- 'sm##.mail.de':587
- DNS ASK google.com
- DNS ASK ch####p.dyndns.org
- DNS ASK fr###eoip.app
- DNS ASK sm##.mail.de
- DNS ASK microsoft.com
- '%TEMP%\<File name>.exe'
- '%WINDIR%\syswow64\windowspowershell\v1.0\powershell.exe' Test-Connection google.com' (with hidden window)
- '%WINDIR%\syswow64\windowspowershell\v1.0\powershell.exe' Test-Connection google.com