Technical Information
- <SYSTEM32>\dhcp\0162\svchost.exe
- <SYSTEM32>\d044523400.dll
- <SYSTEM32>\dhcp\hagpjpries.dll
- %WINDIR%\0a157fec00.dll
- 'co###.llads.cn':802
- DNS ASK ud#.#job123.com
- DNS ASK co###.llads.cn
- 'ud#.#job123.com':31801
- ClassName: 'MS_WINHELP' WindowName: ''
- '<SYSTEM32>\cacls.exe' "<SYSTEM32>\dhcp" /t /e /g everyone:f
- '<SYSTEM32>\regsvr32.exe' /s <SYSTEM32>\dhcp\hagpjpries.dll
- '%WINDIR%\explorer.exe' /e,<SYSTEM32>\dhcp\0162\