Technical Information
- %TEMP%\user2.txt
- %APPDATA%\fa273c45\ak.tmp
- %APPDATA%\user-wchelper.dll
- %TEMP%\user7
- %TEMP%\user8
- %APPDATA%\user-wchelper.dll
- %TEMP%\user2.txt
- %TEMP%\user7
- %TEMP%\user8
- %TEMP%\user7
- %TEMP%\user8
- 'so######6-52051.portmap.io':52051
- DNS ASK so######6-52051.portmap.io
- '%ProgramFiles(x86)%\internet explorer\iexplore.exe'