Technical Information
- '%TEMP%\play2014127194256.exe'
- '%TEMP%\aisu2014127194256wqs.exe'
- '%TEMP%\play2014127194256.exe' (downloaded from the Internet)
- '%TEMP%\aisu2014127194256wqs.exe' (downloaded from the Internet)
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\interface[1].htm
- %TEMP%\play2014127194256.exe
- %TEMP%\aisu2014127194256wqs.exe
- 'cp#.2su.cc':80
- 'ap###wn.2su.cc':80
- ap###wn.2su.cc/ffdy.php
- ap###wn.2su.cc/cpa.php
- ap###wn.2su.cc/tan.php
- DNS ASK cp#.2su.cc
- DNS ASK ap###wn.2su.cc
- ClassName: '(null)' WindowName: 'play2014127194256.exe'
- ClassName: '(null)' WindowName: 'Microsoft Internet Explorer'