Technical Information
- '<SYSTEM32>\taskkill.exe' /f /im lass32.exe
- '<SYSTEM32>\net.exe' stop sharedaccess
- %WINDIR%\system\705.5475.bat
- %WINDIR%\system\rass32.exe
- DNS ASK yx##21.com
- ClassName: '' WindowName: ''
- '%WINDIR%\system\rass32.exe'
- '<SYSTEM32>\cmd.exe' /c %WINDIR%\system\705.5475.bat' (with hidden window)
- '<SYSTEM32>\net.exe' stop sharedaccess' (with hidden window)
- '<SYSTEM32>\cmd.exe' /c %WINDIR%\system\705.5475.bat
- '<SYSTEM32>\ping.exe' -a 127.1
- '<SYSTEM32>\ping.exe' 127.1
- '<SYSTEM32>\net1.exe' stop sharedaccess