Technical Information
- <SYSTEM32>\wlrmdr.exe
- %TEMP%\a94497.bat
- %TEMP%\a94497.bat
- %TEMP%\a94497.bat
- '%WINDIR%\syswow64\cmd.exe' /c %TEMP%\a94497.bat "<Full path to file>"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c %TEMP%\a94497.bat "<Full path to file>"
- '%WINDIR%\syswow64\shutdown.exe' -r -c "Your Just Got Punk'd."