Technical Information
- '%TEMP%\sp.exe' -SIMRB=KeyDownload -Cargo=CT3317199 -SIMTP="pid=795&cmpid=39521&plcmtid=553951&cveid=1362062" -ConAsto -DID=10824 -revert -SIMSDMURL=http://cd#.####load.sweetpacks.com/simsdm/conduit/SP/bundle/bundlesweetimsetup.exe
- '%TEMP%\sp.exe' (downloaded from the Internet)
- %TEMP%\sp.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\BundleSweetIMSetup[1].exe
- %TEMP%\nsk2.tmp\InetLoad.dll
- %TEMP%\nsk2.tmp\InetLoad.dll
- 'cd#.####load.sweetpacks.com':80
- cd#.####load.sweetpacks.com/simsdm/bing/Agent/BundleSweetIMSetup.exe
- DNS ASK cd#.####load.sweetpacks.com
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'