Technical Information
- %TEMP%\kjeltybz.dto.exe
- %TEMP%\kjeltybz.dto.exe
- 'gi####premium.com':443
- DNS ASK gi####premium.com
- '%TEMP%\kjeltybz.dto.exe'
- '%ProgramFiles(x86)%\steam\steam.exe'
- '%WINDIR%\syswow64\cmd.exe' /C ping 1.1.1.1 -n 1 -w 3000 > Nul & Del /f /q "%TEMP%\kjeltybz.dto.exe"
- '%WINDIR%\syswow64\ping.exe' 1.1.1.1 -n 1 -w 3000