Technical Information
- <LS_APPDATA>\google\chrome\user data\default\cookies
- <LS_APPDATA>\google\chrome\user data\default\web data
- <LS_APPDATA>\u3lzdgvtlknoyxjbxq\driver\screen.png
- %PROGRAMDATA%\debug.txt
- %TEMP%\lj0o3pkfb2w.fv
- %TEMP%\vbsgv0eo3i0.fv
- <LS_APPDATA>\u3lzdgvtlknoyxjbxq\driver\browsers\passwords.txt
- %TEMP%\ads2di5wsf2.fv
- <LS_APPDATA>\u3lzdgvtlknoyxjbxq\driver\browsers\cookies\cookies_0.txt
- <LS_APPDATA>\u3lzdgvtlknoyxjbxq\driver\browsers\cookieslist.txt
- %TEMP%\ikmcd4bi10s.fv
- <LS_APPDATA>\u3lzdgvtlknoyxjbxq\driver\browsers\cookies\cookies_1.txt
- %TEMP%\bo3ipygf4p5.fv
- %TEMP%\td23jga1l1d.fv
- %TEMP%\fcqat2rsety.fv
- %TEMP%\14wjszjcg3n.fv
- <LS_APPDATA>\u3lzdgvtlknoyxjbxq\driver\browsers\autofill.txt
- %TEMP%\ads2di5wsf2.fv
- %TEMP%\ikmcd4bi10s.fv
- http://95.##8.191.247/getNum.php
- http://95.##8.191.247/i.php
- DNS ASK google.com
- DNS ASK ip###ger.org