Technical Information
- <Current directory>\5503.bat
- <Current directory>\avjixqbfd_1
- <Current directory>\avjixqbfd_2
- <Current directory>\avjixqbfd_4
- <Current directory>\avjixqbfd_5
- <Current directory>\avjixqbfd_6
- <Current directory>\avjixqbfd_1
- <Current directory>\avjixqbfd_2
- <Current directory>\avjixqbfd_4
- <Current directory>\avjixqbfd_5
- <Current directory>\5503.bat
- '39.#8.135.6':8000
- '39.#8.135.6':80
- http://39.#8.135.6/file_file_file.php
- '%WINDIR%\syswow64\cmd.exe' /c "<Current directory>\5503.bat" "(null)"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c "<Current directory>\5503.bat" "(null)"
- '%WINDIR%\syswow64\wbem\wmic.exe' os get caption, osarchitecture, buildnumber / value
- '%WINDIR%\syswow64\wbem\wmic.exe' qfe list
- '%WINDIR%\syswow64\tasklist.exe'
- '%WINDIR%\syswow64\sc.exe' query state = all