Technical Information
- %WINDIR%\temp\cab91d3.tmp
- %WINDIR%\temp\tar91d4.tmp
- <Current directory>\orbit6swb9edv19.exe
- nul
- %WINDIR%\temp\cab91d3.tmp
- %WINDIR%\temp\tar91d4.tmp
- 'or####remium.com':443
- 'microsoft.com':80
- 'or####remium.com':443
- DNS ASK or####remium.com
- DNS ASK microsoft.com
- DNS ASK st####.rapidssl.com
- '<Current directory>\orbit6swb9edv19.exe'
- '%WINDIR%\syswow64\cmd.exe' /C ping 1.1.1.1 -n 1 -w 3000 > Nul & Del /f /q "<Full path to file>"
- '%WINDIR%\syswow64\ping.exe' 1.1.1.1 -n 1 -w 3000
- '%ProgramFiles(x86)%\steam\steam.exe'