Technical Information
- ClassName: 'OLLYDBG', WindowName: 'OllyDBg'
- %TEMP%\304b1b9e-dd4b-4eed-88ce-236cf20b56e9\agiledotnetrt.dll
- %WINDIR%\syswow64\vwbytxp.exe
- <Current directory>\supportcheats.exe
- from <Full path to file> to <Current directory>\091215315.exe
- http://a1.####ortcheats.net/EXCLUDE/EXCLUDE.txt
- http://a1.####ortcheats.net/BANIDOS/banidos.txt
- http://a1.####ortcheats.net/VERSION/VERIFICATION
- http://a1.####ortcheats.net/VERSION/VERSION51
- http://lo######.supportcheats.net/supportcheats.exe
- DNS ASK a1.####ortcheats.net
- DNS ASK lo######.supportcheats.net
- ClassName: 'WinDbgFrameClass' WindowName: ''
- ClassName: 'ObsidianGUI' WindowName: ''
- ClassName: 'ID' WindowName: ''
- '%WINDIR%\syswow64\cmd.exe' /C choice /C Y /N /D Y /T 3 & Del 091215315.exe <Full path to file>' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /C choice /C Y /N /D Y /T 3 & Del 091215315.exe <Full path to file>
- '%WINDIR%\syswow64\choice.exe' /C Y /N /D Y /T 3