Technical Information
- %TEMP%\froulette.exe
- %TEMP%\804131166675.exe
- %TEMP%\gentee00\gentee.dll
- %TEMP%\gentee00\guig.dll
- %TEMP%\gentee00\setup_temp.gea
- %TEMP%\_gx.bin
- %TEMP%\gentee00\1install - 1.bmp
- 'ba##oni.ru':80
- 'ba##oni.ru':443
- 'microsoft.com':80
- http://ba##oni.ru/163onmyneck.txt
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- 'ba##oni.ru':443
- DNS ASK ba##oni.ru
- DNS ASK microsoft.com
- '%TEMP%\froulette.exe'
- '%TEMP%\804131166675.exe'