Technical Information
- %TEMP%\bass.dll
- %TEMP%\msc.dll
- <Full path to file>.tmp
- <Full path to file>
- from <Full path to file> to <Full path to file>.bak
- http://pa####l.5wqq.com:88/1010/%E6%94%AF%E4%BB%98%E7%9B%91%E6%8E%A7%E8%AF%AD%E9%9F%B3%E6%92%AD%E6%8A%A5%5F%E5%85%8D%E8%B4%B9%E7%89%88.exe via pa####l.5wqq.com
- DNS ASK pa####l.5wqq.com
- ClassName: 'BUTTON' WindowName: ''
- ClassName: 'Edit' WindowName: ''
- ClassName: 'ComboBox' WindowName: ''
- ClassName: 'msctls_trackbar32' WindowName: ''
- ClassName: 'msctls_progress32' WindowName: ''
- ClassName: 'ListBox' WindowName: ''
- ClassName: 'SysListView32' WindowName: ''
- ClassName: 'SysTreeView32' WindowName: ''
- ClassName: 'SysIPAddress32' WindowName: ''
- ClassName: 'SysDateTimePick32' WindowName: ''
- ClassName: 'msctls_updown32' WindowName: ''
- ClassName: 'SysHeader32' WindowName: ''
- ClassName: 'ToolbarWindow32' WindowName: ''
- ClassName: '' WindowName: ''