Technical Information
- '' (downloaded from the Internet)
- '%APPDATA%\cax8343.exe'
- %APPDATA%\cax8343.exe
- http://ma##ero.ga/cax/cax.exe
- DNS ASK ma##ero.ga
- DNS ASK di##ord.com
- DNS ASK cd#.##scordapp.com
- '%CommonProgramFiles%\microsoft shared\equation\eqnedt32.exe' -Embedding