Technical Information
- '<SYSTEM32>\tskill.exe' taskmgr
- '<SYSTEM32>\tskill.exe' cmd
- '<Current directory>\MSOUTL32.bin'
- <SYSTEM32>\cmd.exe
- <Full path to file>
- <Current directory>\MSOUTL32.bin
- %TEMP%\~DF75E8.tmp
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\hosts[1]
- %TEMP%\~DF61CC.tmp
- <Current directory>\MSOUTL32.bin
- 'fo####te.cafe24.com':80
- 'localhost':1038
- 'localhost':1037
- http://fo####te.cafe24.com/program/hosts
- DNS ASK fo####te.cafe24.com
- ClassName: 'Shell_TrayWnd' WindowName: ''