Technical Information
- <SYSTEM32>\tasks\nvngxupdatecheckdaily_{3d45a02f-a02f-a02f-a02f-3d45a02fa02f}
- %TEMP%\210a.tmp
- %APPDATA%\iiuwrij
- %TEMP%\45a7.exe
- %TEMP%\49ec.exe
- %APPDATA%\iiuwrij
- 'ch####evmonster.top':80
- http://28#####dkdajsdj.info/
- http://ch####evmonster.top/gate/log.php
- DNS ASK dk#####iqwdwnfj.info
- DNS ASK 28#####dkdajsdj.info
- DNS ASK te##te.in
- DNS ASK ch####evmonster.top
- '%TEMP%\45a7.exe'
- '%TEMP%\49ec.exe'