Technical Information
- %WINDIR%\steam\flashupnew.exe
- %TEMP%\7zsfx000.cmd
- %TEMP%\7zsfx000.cmd
- DNS ASK cd#.#y68.com
- DNS ASK ph##kutnev
- DNS ASK ap##.#ame.qq.com
- DNS ASK br##kola.cn
- DNS ASK js.#6ji.cn
- '%WINDIR%\steam\flashupnew.exe'
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "' (with hidden window)
- '%WINDIR%\syswow64\ipconfig.exe' /flushdns' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\7ZSfx000.cmd" "
- '%WINDIR%\syswow64\ipconfig.exe' /flushdns