Technical Information
- %TEMP%\r99jwx4hid
- %TEMP%\r99jwx4hid.dll
- http://www.fr#####newesternshow.it/69ismn
- http://www.eu###egreen.org/8tsts
- http://ka###it.szm.com/my0txxf
- DNS ASK fr#####newesternshow.it
- DNS ASK eu###egreen.org
- DNS ASK so####olady7.wang
- DNS ASK ka###it.szm.com
- DNS ASK er#####struzioni.com
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\R99JWX~1.DLL,qwerty 323