Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\<File name>.exe
- <Current directory>\windowscodecs.dll
- %APPDATA%\svchost.exe
- %ProgramFiles(x86)%\java\java.exe
- %TEMP%\user2.txt
- %APPDATA%\userlog.dat
- %TEMP%\user7
- %TEMP%\user8
- <Current directory>\windowscodecs.dll
- %ProgramFiles(x86)%\java\java.exe
- %APPDATA%\userlog.dat
- %TEMP%\user2.txt
- %TEMP%\user8
- %TEMP%\user7
- %TEMP%\user8
- %TEMP%\user7
- 'localhost':999
- DNS ASK ch####9.no-ip.biz
- '%APPDATA%\svchost.exe'
- '%ProgramFiles(x86)%\java\java.exe'
- '%ProgramFiles(x86)%\internet explorer\iexplore.exe'