Technical Information
- <Drive name for removable media>:\RevengeRAT\Chrome.exe
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe'
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
- %TEMP%\FwDtZlNAp.txt
- <Drive name for removable media>:\RevengeRAT\Chrome.exe
- 'xb####418.hopto.org':1177
- DNS ASK xb####418.hopto.org
- ClassName: 'Shell_TrayWnd' WindowName: ''