Technical Information
- <Current directory>\antipublic_cracked.exe
- <Current directory>\antipublic_cracked.exe
- 'gc##.link':443
- 'x.##2.us':80
- 'microsoft.com':80
- 'ti#u.be':443
- http://x.##2.us/x.cer
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- 'gc##.link':443
- 'ti#u.be':443
- DNS ASK gc##.link
- DNS ASK x.##2.us
- DNS ASK microsoft.com
- DNS ASK ti#u.be
- '<Current directory>\antipublic_cracked.exe'
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' $file='<Full path to file>';for($i=1;$i -le 600 -and (Test-Path $file -PathType leaf);$i++){Remove-Item $file;Start-Sleep -m 100}' (with hidden window)
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' $file='<Full path to file>';for($i=1;$i -le 600 -and (Test-Path $file -PathType leaf);$i++){Remove-Item $file;Start-Sleep -m 100}