Technical Information
- %HOMEPATH%\start menu\programs\startup\<File name>.lnk
- %WINDIR%\tasks\bidaily synchronize task.job
- %ALLUSERSPROFILE%\application data\{628f8214-9f8d-3089-628f-f82149f80852}\<File name>.exe
- %ALLUSERSPROFILE%\application data\{628f8214-9f8d-3089-628f-f82149f80852}\<File name>.dat
- DNS ASK sh####-models.com
- DNS ASK po####ve-models.com