Technical Information
- %TEMP%\~8c47.bat
- %LOCALAPPDATA%\be1.exe
- %LOCALAPPDATA%\loader_forqd311.exe
- %TEMP%\~9230.bat
- %LOCALAPPDATA%\ddvinstall.exe
- %LOCALAPPDATA%\client.ini
- %TEMP%\~8c47.bat
- %TEMP%\~9230.bat
- '91##5.com':80
- '60.##1.222.214':6066
- DNS ASK 91##5.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%LOCALAPPDATA%\be1.exe'
- '%LOCALAPPDATA%\ddvinstall.exe'
- '%WINDIR%\syswow64\cmd.exe' /c %TEMP%\~8C47.bat "<Full path to file>"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c %TEMP%\~9230.bat "%LOCALAPPDATA%\be1.exe"' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c %TEMP%\~8C47.bat "<Full path to file>"
- '%WINDIR%\syswow64\cmd.exe' /c %TEMP%\~9230.bat "%LOCALAPPDATA%\be1.exe"