Technical Information
- %APPDATA%\dodlog.bat
- %APPDATA%\msocache\iloveyou.txt
- %APPDATA%\dodlog.bat
- from <Full path to file> to %APPDATA%\msocache\googleupdete.exe
- 'ap#.#yip.com':443
- 'microsoft.com':80
- 'localhost':8080
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- 'ap#.#yip.com':443
- DNS ASK ap#.#yip.com
- DNS ASK microsoft.com
- '%WINDIR%\syswow64\cmd.exe' /c ""%APPDATA%\DoDLog.bat" "' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ""%APPDATA%\DoDLog.bat" "
- '%WINDIR%\syswow64\chcp.com' 1251
- '%WINDIR%\syswow64\attrib.exe' +H +S /D "%APPDATA%\MSOCache\"