Technical Information
- '' (downloaded from the Internet)
- C:\-1998166001
- C:\seumata.exe
- C:\muel.exe
- C:\waffppc.exe
- C:\pqoqvtp.exe
- C:\nbtpamw.exe
- C:\bwualsl.exe
- C:\mfwepfx.exe
- <Full path to file>
- 'aa###djkgn.com':80
- http://aa###djkgn.com/progs/kyvsfgghh/mwwwjwxxt.php?ad########
- http://aa###djkgn.com/progs/kyvsfgghh/vbclmznn.php
- http://aa###djkgn.com/progs/kyvsfgghh/qjgguh.php
- http://aa###djkgn.com/progs/kyvsfgghh/nddaa.php
- http://aa###djkgn.com/progs/kyvsfgghh/hrobc.php
- http://aa###djkgn.com/progs/kyvsfgghh/dnxkllz.php
- http://aa###djkgn.com/progs/kyvsfgghh/islre.php
- http://aa###djkgn.com/progs/kyvsfgghh/dnkkycc
- http://aa###djkgn.com/progs/kyvsfgghh/bkxlyllzm.php?ad#################################################
- DNS ASK aa###djkgn.com
- 'C:\seumata.exe'
- 'C:\muel.exe'
- 'C:\waffppc.exe'
- 'C:\pqoqvtp.exe'
- 'C:\nbtpamw.exe'
- 'C:\bwualsl.exe'
- 'C:\mfwepfx.exe'
- '<SYSTEM32>\cmd.exe' /c del <Full path to file> > nul