Technical Information
- '%TEMP%\srris.exe'
- '<SYSTEM32>\ntvdm.exe' -f -i1
- %WINDIR%\Temp\scs1.tmp
- %WINDIR%\Temp\scs2.tmp
- %TEMP%\mango.exe
- %TEMP%\srris.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\KHMHGZ4F\Targ-1505USdw[1].tar
- %WINDIR%\Temp\scs2.tmp
- %WINDIR%\Temp\scs1.tmp
- 'ro###ompany.com':80
- ro###ompany.com/images/Targ-1505USdw.tar
- DNS ASK ro###ompany.com
- ClassName: 'ConsoleWindowClass' WindowName: 'ntvdm-b9c.ba0.380001'