Technical Information
- '<SYSTEM32>\coep\Mrolsmc.exe' -a blake2s -o http://98.###.245.186:8543 -u oxn -p oxn -t 2
- <SYSTEM32>\coep\pthreadGC2.dll
- <SYSTEM32>\coep\Mrolsmc.exe
- <SYSTEM32>\coep\libcurl-4.dll
- <SYSTEM32>\coep\libgcc_s_dw2-1.dll
- from <Full path to file> to <SYSTEM32>\wbem\626813825.xml
- '98.##6.245.186':8543