Technical Information
- %TEMP%\<File name>_src.exe
- %TEMP%\pldvy.exe
- %TEMP%\tcjhl.exe
- %TEMP%\pldvy.exe
- %TEMP%\tcjhl.exe
- http://ba##.dxcqsa.xyz/dxcqs.exe
- http://ol########.#bs.cn-north-1.myhuaweicloud.com/dxcqs.exe
- http://ba##.dxcqsa.xyz/dbackup.exe
- http://ol########.#bs.cn-north-1.myhuaweicloud.com/dbackup.exe
- DNS ASK ba##.dxcqsa.xyz
- DNS ASK ol########.#bs.cn-north-1.myhuaweicloud.com
- DNS ASK ba##.##curityterm.xyz
- DNS ASK ba##.##ldpanther.xyz
- DNS ASK ba##.#1x2c3q4s5.xyz
- '%TEMP%\<File name>_src.exe' ins