Technical Information
- '<SYSTEM32>\rundll32.exe' <SYSTEM32>\shimgvw.dll,ImageView_Fullscreen <Current directory>\xxx.bmp
- %PROGRAM_FILES%\BaoFeng\StormPlayer.exe
- %PROGRAM_FILES%\BaoFeng\StormPlayer.dll
- from <Full path to virus> to %PROGRAM_FILES%\Win229031.exe
- 'www.ip##8.com':80
- DNS ASK www.ip##8.com
- ClassName: 'kxetray' WindowName: '(null)'