Technical Information
- %WINDIR%\explorer.exe
- iexplore.exe
- firefox.exe process, nss3.dll module
- %HOMEPATH%\desktop\adhd_and_obesity.docx
- %HOMEPATH%\desktop\default.bmp
- %HOMEPATH%\desktop\glidescope_review_rev_010.docx
- DNS ASK ly##3.com
- '%WINDIR%\syswow64\rundll32.exe'
- '%WINDIR%\syswow64\cmd.exe' del "<Full path to file>"