Technical Information
- '%TEMP%\~ms10.tmp'
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 5
- '<SYSTEM32>\taskkill.exe' /f /pid 2796
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\t.bat" "
- %WINDIR%\Explorer.EXE
- %PROGRAM_FILES%\MSDN\hehex.sys
- %PROGRAM_FILES%\MSDN\mylpk.dll
- %TEMP%\t.bat
- %PROGRAM_FILES%\MSDN\000000001
- <DRIVERS>\xaonjz.sys
- %TEMP%\~ms10.tmp
- %PROGRAM_FILES%\MSDN\LHL13.sys
- %PROGRAM_FILES%\MSDN\hehex.sys
- %PROGRAM_FILES%\MSDN\mylpk.dll
- %TEMP%\~ms10.tmp
- <DRIVERS>\xaonjz.sys
- %PROGRAM_FILES%\MSDN\000000001
- %PROGRAM_FILES%\MSDN\LHL13.sys
- 'e2##.waqsg.com':81
- 'localhost':1037
- DNS ASK e2##.waqsg.com
- ClassName: '(null)' WindowName: '(null)'