Technical Information
- <Current directory>\壸´¹å[¶ü].exe
- <Current directory>\delme.bat
- http://66###.####cn-shanghai.aliyuncs.com/update.txt
- DNS ASK 66###.####cn-shanghai.aliyuncs.com
- ClassName: '' WindowName: '¿ì¿ì¶Ü×Ô¶¯¸üгÌÐò'
- ClassName: '2444242553' WindowName: '·Ö²¼Ê½½Úµã·ÀÓùϵͳ'
- ClassName: '' WindowName: '·Ö²¼Ê½½Úµã·ÀÓùϵͳ'
- '%WINDIR%\syswow64\sc.exe' STOP MpsSvc' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c .\delme.bat' (with hidden window)
- '%WINDIR%\syswow64\sc.exe' STOP MpsSvc
- '%WINDIR%\syswow64\cmd.exe' /c .\delme.bat