Technical Information
- %WINDIR%\explorer.exe
- %TEMP%\kkcohx22yp
- %TEMP%\bxwuscjom
- %TEMP%\nsc2f4b.tmp\system.dll
- 'sp######eldautodetail.com':80
- DNS ASK di####dahead.net
- DNS ASK sp######eldautodetail.com
- '%WINDIR%\syswow64\netsh.exe'
- '%WINDIR%\syswow64\cmd.exe' del "<Full path to file>"