Technical Information
- '%WINDIR%\syswow64\taskkill.exe'
- %WINDIR%\syswow64\taskkill.exe
- <PATH_SAMPLE>_rp2erl.exe
- 'la##uzy.com':80
- http://www.la##uzy.com/bbgx/lolhfds.html?20######################
- DNS ASK la##uzy.com
- '%WINDIR%\syswow64\cmd.exe' /c del /q "<Full path to file>"' (with hidden window)
- '%WINDIR%\syswow64\cacls.exe'
- '%WINDIR%\syswow64\cmd.exe' /c del /q "<Full path to file>"