Technical Information
- ClassName: 'OLLYDBG', WindowName: ''
- %TEMP%\rusbm2ha.2vb\icon
- %TEMP%\rusbm2ha.2vb\<File name>.exe
- %TEMP%\rusbm2ha.2vb\7z.dll
- %TEMP%\rusbm2ha.2vb\html.zip
- %TEMP%\rusbm2ha.2vb\archive.xml
- '85.##3.191.58':81
- DNS ASK xs#.##p-archive.com
- '%TEMP%\rusbm2ha.2vb\<File name>.exe'
- '%WINDIR%\microsoft.net\framework\v2.0.50727\dw20.exe' -x -s 1136