Technical Information
- <SYSTEM32>\cmd.exe
- <Current directory>\ybroin7.exe
- nul
- from <Current directory>\ybroin7.exe to <Current directory>\ybroins.com
- '19#.#24.0.99':12845
- '<Current directory>\ybroin7.exe'
- '<Current directory>\ybroin7.exe' ' (with hidden window)
- '<SYSTEM32>\cmd.exe' /C ping 1.1.1.1 -n 1 -w 2200 > Nul & Del /f /q "<Full path to file>"
- '<SYSTEM32>\ping.exe' 1.1.1.1 -n 1 -w 2200
- '<SYSTEM32>\cmd.exe' <Current directory>\ybroin7.exe
- '<SYSTEM32>\cmd.exe' /c ping 1.1.1.1 -n 1 -w 1700 > Nul & rename "<Current directory>\ybroin7.exe" "ybroins.com"
- '<SYSTEM32>\ping.exe' 1.1.1.1 -n 1 -w 1700