Technical Information
- '91.##4.214.46':80
- http://91.##4.214.46/loader/uploads/Iseloon_Akyjwmsv.jpg
- '%WINDIR%\syswow64\windowspowershell\v1.0\powershell.exe' -enc UwB0AGEAcgB0AC0AUwBsAGUAZQBwACAALQBzACAAMQAwADsAIABSAGUAbQBvAHYAZQAtAEkAdABlAG0AIAAtAFAAYQB0AGgAIAAiAEMAOgBcAGsAcwBkAG8AeAB1AGYAaQBcAGkAZAB4AGMAaABsAHkAcgAuAGUAeABlACIAIAAtAEYAbwByAGMAZQA=' (with hidden window)
- '%WINDIR%\syswow64\windowspowershell\v1.0\powershell.exe' -enc UwB0AGEAcgB0AC0AUwBsAGUAZQBwACAALQBzACAAMQAwADsAIABSAGUAbQBvAHYAZQAtAEkAdABlAG0AIAAtAFAAYQB0AGgAIAAiAEMAOgBcAGsAcwBkAG8AeAB1AGYAaQBcAGkAZAB4AGMAaABsAHkAcgAuAGUAeABlACIAIAAtAEYAbwByAGMAZQA=