Technical Information
- %WINDIR%\sjhitgnd_008.exe
- %TEMP%\is-7EFP2.tmp\sjhitgnd_008.tmp
- %TEMP%\is-8G51F.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-8G51F.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-8G51F.tmp\_isetup\_iscrypt.dll
- %WINDIR%\Installer\MSI1.tmp
- %WINDIR%\Installer\MSI1.tmp
- %TEMP%\is-8G51F.tmp\_isetup\_iscrypt.dll
- %TEMP%\is-8G51F.tmp\_isetup\_RegDLL.tmp
- %TEMP%\is-8G51F.tmp\_isetup\_shfoldr.dll
- %TEMP%\is-7EFP2.tmp\sjhitgnd_008.tmp
- 'wp#d':80
- 'dl.###ynnrb.club':80
- http://11#.#11.111.1/wpad.dat via wp#d
- http://dl.###ynnrb.club/m/sjhitgnd_008.jpg
- DNS ASK wp#d
- DNS ASK dl.###ynnrb.club
- ClassName: '' WindowName: 'Microsoft Internet Explorer'
- '%WINDIR%\sjhitgnd_008.exe'
- '%TEMP%\is-7EFP2.tmp\sjhitgnd_008.tmp' /SL5="$300DE,54272,54272,%WINDIR%\sjhitgnd_008.exe"
- '<SYSTEM32>\msiexec.exe' /V