Technical Information
- C:\1.bat
- C:\ginzo.sfx.exe
- C:\ginzo.exe
- 'no###ally.ru':443
- 'microsoft.com':80
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- 'no###ally.ru':443
- DNS ASK no###ally.ru
- DNS ASK microsoft.com
- ClassName: 'EDIT' WindowName: ''
- 'C:\ginzo.sfx.exe' -p123
- 'C:\ginzo.exe'
- '%WINDIR%\syswow64\cmd.exe' /c ""C:\1.bat" "