Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\<File name>.exe
- %APPDATA%\<File name>..exe
- %ProgramFiles(x86)%\important\services64.exe
- %TEMP%\xx--xx--xx.txt
- %APPDATA%\cglogs.dat
- %TEMP%\xxx.xxx
- %TEMP%\uuu.uuu
- %APPDATA%\cglogs.dat
- %TEMP%\xx--xx--xx.txt
- %TEMP%\uuu.uuu
- %TEMP%\xxx.xxx
- %TEMP%\uuu.uuu
- %TEMP%\xxx.xxx
- DNS ASK va#.#o-ip.info
- '%APPDATA%\<File name>..exe'
- '%ProgramFiles(x86)%\important\services64.exe'