Technical Information
- <SYSTEM32>\mswinsocks.exe (downloaded from the Internet)
- <SYSTEM32>\handle32.exe (downloaded from the Internet)
- <SYSTEM32>\ntldr32.exe (downloaded from the Internet)
- <SYSTEM32>\handle32.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\ULU3YH2D\handle[1].exe
- <SYSTEM32>\mswinsocks.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\SL6TKFAX\w[1].exe
- <SYSTEM32>\ntldr32.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\ademo[1].exe
- <SYSTEM32>\manager.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\0D6B6PI5\manager[1].exe
- '19#.#4.136.180':80
- 'localhost':1035
- 19#.#4.136.180/handle.exe
- 19#.#4.136.180/w.exe
- 19#.#4.136.180/ademo.exe
- 19#.#4.136.180/manager.exe