Technical Information
- ClassName: 'OLLYDBG', WindowName: ''
- %TEMP%\evb2481.tmp
- C:\mirsdk\clinkapi.dll
- %WINDIR%\muye.dll
- %TEMP%\sxq9us.tmp
- <Current directory>\config.ini
- %WINDIR%\muye.dll
- %TEMP%\sxq9us.tmp
- 'mi####.andylab.cn':80
- 'up####.4006058999.com':80
- http://mi####.andylab.cn/Users/longxin/IPForwarding.txt
- http://mi####.andylab.cn/Users/longxin/Time.txt
- http://mi####.andylab.cn/%C2%B1%C2%B1%C2%BE%C2%A9%C3%8A%C2%B1%C2%BC%C3%A4.txt
- http://mi####.andylab.cn/Users/longxin/PenaltyRules.txt
- http://mi####.andylab.cn/Users/longxin/YtbSetup.txt
- http://up####.4006058999.com/down.txt
- DNS ASK si##.com.cn
- DNS ASK mi####.andylab.cn
- DNS ASK wy#.#duca.com
- DNS ASK up####.4006058999.com
- ClassName: 'MS_WINHELP' WindowName: ''