Technical Information
- %TEMP%\6gqp0mwlww
- %TEMP%\6gqp0mwlww.dll
- '13#.#01.191.196':80
- http://ih##.org/txb1n2bm
- http://an######nelli.interfree.it/rfer0z1
- DNS ASK ih##.org
- DNS ASK an######nelli.interfree.it
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\6GQP0M~1.DLL,qwerty 323