Technical Information
- '<SYSTEM32>\cmd.exe' /c \DelSelf.bat
- '<SYSTEM32>\regsvr32.exe' /s "%WINDIR%\bstyu.dll"
- %WINDIR%\bstcheck.exe
- %WINDIR%\bstyu.dll
- C:\DelSelf.bat
- %TEMP%\bstyu.dll
- %TEMP%\00047098
- %TEMP%\0006482A
- %TEMP%\bstcheck.exe
- %WINDIR%\bstyu.dll
- %WINDIR%\bstcheck.exe
- %TEMP%\bstcheck.exe
- %TEMP%\bstyu.dll
- %TEMP%\00047098
- %TEMP%\0006482A
- 'up#.##styou.co.kr':80
- up#.##styou.co.kr/pgadmin/count/count.php?b=#
- DNS ASK up#.##styou.co.kr
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'