Technical Information
- dnf.exe
- %TEMP%\xiwl.sys
- 'op##.baidu.com':80
- 'xi#l.tk':80
- op##.baidu.com/special/time/
- xi#l.tk/
- DNS ASK op##.baidu.com
- DNS ASK xi#l.tk
- ClassName: '' WindowName: 'rundll32.exe'
- ClassName: '' WindowName: 'WDCertM_ABC.exe'
- ClassName: '' WindowName: 'RTHDCPL.exe'
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: '' WindowName: 'WDKeyMonitorABC.exe'
- ClassName: '' WindowName: 'IAStorDataMgrSvc.exe'
- ClassName: '' WindowName: 'QQExternal.exe'
- ClassName: '' WindowName: 'QQlogin.exe'
- ClassName: '' WindowName: 'Txplatform.exe'
- ClassName: '' WindowName: 'TenSafe.exe'
- ClassName: '' WindowName: 'Tencentdl.exe'
- ClassName: '' WindowName: 'SougouCloud.exe'
- ClassName: '' WindowName: 'QQDL.exe'