Technical Information
- '<SYSTEM32>\msiexec.exe'
- 'ex###t-drive.ru':80
- 'ba###-11611.co':80
- '20#.#6.232.182':80
- 'ri###lanet.eu':80
- http://ba###-11611.co/gate777.php
- http://ex###t-drive.ru/avto-school/driving-lessons/wordpress-file-monitor-plus/classes/system4_1030.php
- http://ri###lanet.eu/srvr/htmlpurifier-2.1.5/plugins/phorum/settings/system4_1030.php
- DNS ASK ex###t-drive.ru
- DNS ASK ba###-11611.co
- DNS ASK microsoft.com
- DNS ASK ri###lanet.eu