Technical Information
- '%TEMP%\AuraTool\Aura.exe'
- '%TEMP%\AuraTool\Aura.exe' (downloaded from the Internet)
- %TEMP%\AuraTool\Aura.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Aura[1].exe
- 'au#####l.altervista.org':80
- au#####l.altervista.org/Aura.exe
- DNS ASK au#####l.altervista.org
- ClassName: 'Shell_TrayWnd' WindowName: '(null)'