Technical Information
- %TEMP%\20230912t034908_086.exe
- %TEMP%\20230912t035005_714.exe
- '20##########908_086.ltiapmyzmjxrvrts.info':80
- '20##########005_714.ltiapmyzmjxrvrts.info':80
- '20##########048_635.ltiapmyzmjxrvrts.info':80
- http://20##########908_086.ltiapmyzmjxrvrts.info/v4/20230912T034908_086.exe
- http://20##########005_714.ltiapmyzmjxrvrts.info/v4/20230912T035005_714.exe
- http://20##########048_635.ltiapmyzmjxrvrts.info/v4/20230912T035048_635.exe
- DNS ASK 20##########908_086.ltiapmyzmjxrvrts.info
- DNS ASK 20##########005_714.ltiapmyzmjxrvrts.info
- DNS ASK 20##########048_635.ltiapmyzmjxrvrts.info
- '%TEMP%\20230912t034908_086.exe'
- '%TEMP%\20230912t035005_714.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230912T034908_086.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230912T035005_714.exe