Technical Information
- %WINDIR%\Tasks\{7B75138C-E213-D060-4943-4BCABEE165F7}.job
- '%APPDATA%\dALvjxmx\QPKgJYav\vAxtWpad\uJSYzFgNV.exe'
- %APPDATA%\dALvjxmx\QPKgJYav\vAxtWpad\uJSYzFgNV.exe
- 'ta###peri.party':80
- 'li#####cksreport.com':80
- 'se####tyrealnet.com':443
- 'lo####kibogi.com':80
- http://li#####cksreport.com/netreport.php
- http://ta###peri.party/netreport.php
- http://lo####kibogi.com/netreport.php
- DNS ASK ta###peri.party
- DNS ASK li#####cksreport.com
- DNS ASK se####tyrealnet.com
- DNS ASK lo####kibogi.com