Technical Information
- %LOCALAPPDATA%\simple_loader\<File name>.exe_url_ppe4ieo2muw2rbx321qxdwmwa4llzlpe\1.0.0.0\pnatehqq.newcfg
- <Current directory>\864z0gy3t3dj0x1z.exe
- from %LOCALAPPDATA%\simple_loader\<File name>.exe_url_ppe4ieo2muw2rbx321qxdwmwa4llzlpe\1.0.0.0\pnatehqq.newcfg to %LOCALAPPDATA%\simple_loader\<File name>.exe_url_ppe4ieo2muw2rbx321qxdwmwa4llzlpe\1.0.0.0\user.config
- <Current directory>\simple-loader.exe
- from <Full path to file> to <Current directory>\simple-loader.exe
- http://mm###9.ct8.pl/vers.txt
- http://mm###9.ct8.pl/simple-loader.exe
- DNS ASK mm###9.ct8.pl
- '<Current directory>\864z0gy3t3dj0x1z.exe'