Technical Information
- %WINDIR%\syswow64\cmd.exe
- %WINDIR%\syswow64\secvbnmcxccvxcxcsdsdsxcxcz125771681818000.exe
- %WINDIR%\syswow64\mecxzcaasxzcxcassascxcxcx23667.exe
- 's4.#100.vip':23669
- '12#.#7.168.181':8000
- 's2.#100.vip':23667
- 's4.#100.vip':23669
- '12#.#7.168.181':8000
- DNS ASK s4.#100.vip
- DNS ASK ia#####x.asuscomm.com
- DNS ASK s2.#100.vip
- '%WINDIR%\syswow64\secvbnmcxccvxcxcsdsdsxcxcz125771681818000.exe'
- '%WINDIR%\syswow64\mecxzcaasxzcxcassascxcxcx23667.exe'
- '%WINDIR%\syswow64\cmd.exe'