Technical Information
- '%TEMP%\bgdfcffc.exe'
- '%TEMP%\dwtetevf.exe'
- '%TEMP%\vgregwr.exe'
- '%TEMP%\bhtydrhbtr.exe'
- '%TEMP%\bryehretgw.exe'
- '%TEMP%\dwtetevf.exe' (downloaded from the Internet)
- '%TEMP%\vgregwr.exe' (downloaded from the Internet)
- '%TEMP%\bryehretgw.exe' (downloaded from the Internet)
- '%TEMP%\bgdfcffc.exe' (downloaded from the Internet)
- '%TEMP%\bhtydrhbtr.exe' (downloaded from the Internet)
- %TEMP%\dwtetevf.exe
- %TEMP%\vgregwr.exe
- %TEMP%\bgdfcffc.exe
- %TEMP%\bhtydrhbtr.exe
- %TEMP%\bryehretgw.exe
- '10#.#00.78.119':80
- http://10#.#00.78.119/4
- http://10#.#00.78.119/5
- http://10#.#00.78.119/3
- http://10#.#00.78.119/1
- http://10#.#00.78.119/2