Technical Information
- %LOCALAPPDATA%\simple-loader\<File name>.exe_url_zwx0macpofi4diz2atvgdqlff2zsmya0\1.0.0.0\pansxh2h.newcfg
- <Current directory>\ry2c3lltdj4gf5wt.exe
- from %LOCALAPPDATA%\simple-loader\<File name>.exe_url_zwx0macpofi4diz2atvgdqlff2zsmya0\1.0.0.0\pansxh2h.newcfg to %LOCALAPPDATA%\simple-loader\<File name>.exe_url_zwx0macpofi4diz2atvgdqlff2zsmya0\1.0.0.0\user.config
- <Current directory>\simple-loader.exe
- from <Full path to file> to <Current directory>\simple-loader.exe
- http://mm###9.ct8.pl/vers.txt
- http://mm###9.ct8.pl/simple-loader.exe
- DNS ASK mm###9.ct8.pl
- '<Current directory>\ry2c3lltdj4gf5wt.exe'