Technical Information
- %WINDIR%\o5bgvussrhnp38jhpoq0.exe
- %WINDIR%\nwfuzurfdtfgwni2wowb.jpg
- %TEMP%\e_4\krnln.fnr
- %TEMP%\e_4\exmlrpc.fne
- %TEMP%\e_4\dp1.fne
- %ProgramFiles(x86)%\dviozinoi.exe
- C:\o5bgvussrhnp38jhpoq0.exe_and xme.bat
- %ProgramFiles(x86)%\dviozinoi.dll
- %TEMP%\121055.tmp
- %TEMP%\bclib\krnln.fnr
- %TEMP%\bclib\dp1.fne
- %TEMP%\bclib\exmlrpc.fne
- %TEMP%\bclib\krnln.fne
- %WINDIR%\o5bgvussrhnp38jhpoq0.exe
- from %TEMP%\121055.tmp to %TEMP%\121055.tmp2
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- ClassName: 'Static' WindowName: ''
- '%WINDIR%\o5bgvussrhnp38jhpoq0.exe'
- '%ProgramFiles(x86)%\dviozinoi.exe'
- '%WINDIR%\syswow64\cmd.exe' /c ""c:\O5BgVuSSRHnP38jHPOq0.exe_And xMe.bat""' (with hidden window)
- '%ProgramFiles%\internet explorer\iexplore.exe' ' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ""c:\O5BgVuSSRHnP38jHPOq0.exe_And xMe.bat""
- '%ProgramFiles%\internet explorer\iexplore.exe'