Technical Information
- '' (downloaded from the Internet)
- '<SYSTEM32>\taskkill.exe' /f /pid 2904
- %TEMP%\1.tmp.exe
- <Full path to file>
- 'to###esture.gdn':80
- http://to###esture.gdn/getfile/m.exe
- DNS ASK to###esture.gdn
- ClassName: '' WindowName: ''
- '%TEMP%\1.tmp.exe' --ch=15450
- '<SYSTEM32>\ping.exe' 127.0.0.1 -n 2 -w 500
- '<SYSTEM32>\cmd.exe' /c taskkill /f /pid 2904 & for /l %x in (1,1,60) do ( ping 127.0.0.1 -n 2 -w 500 & del /q /f "<Full path to file>" & if not exist "<Full path to file>" ( exit ) )