Technical Information
- '%WINDIR%\syswow64\taskkill.exe' /IM chrome.exe /IM firefox.exe /IM opera.exe /IM browser.exe /IM MicrosoftEdge.exe /IM iexplore.exe /F
- iexplore.exe
- firefox.exe
- %TEMP%\ixxzxbmkwt
- %TEMP%\vjqmolquen
- %TEMP%\suyvjgfomi
- %TEMP%\ixxzxbmkwt
- %TEMP%\vjqmolquen
- %TEMP%\suyvjgfomi
- 'sa#####.gjjtnreigoohyj.xyz':443
- DNS ASK sa#####.gjjtnreigoohyj.xyz
- DNS ASK google.com
- ClassName: '' WindowName: ''
- '%WINDIR%\syswow64\ipconfig.exe' /all' (with hidden window)
- '%WINDIR%\syswow64\nslookup.exe' google.com' (with hidden window)
- '%WINDIR%\syswow64\ipconfig.exe' /all
- '%WINDIR%\syswow64\nslookup.exe' google.com
- '%WINDIR%\syswow64\cmd.exe' /C choice /C Y /N /D Y /T 5 & Del /f /q "<Full path to file>"
- '%WINDIR%\syswow64\choice.exe' /C Y /N /D Y /T 5