Technical Information
- %TEMP%\20230915t210216_430.exe
- '20##########216_430.ltiapmyzmjxrvrts.info':80
- '20##########308_060.ltiapmyzmjxrvrts.info':80
- http://20##########216_430.ltiapmyzmjxrvrts.info/v4/20230915T210216_430.exe
- http://20##########308_060.ltiapmyzmjxrvrts.info/v4/20230915T210308_060.exe
- DNS ASK 20##########216_430.ltiapmyzmjxrvrts.info
- DNS ASK 20##########308_060.ltiapmyzmjxrvrts.info
- '%TEMP%\20230915t210216_430.exe'
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230915T210216_430.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230915T210308_060.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230915T210408_740.exe
- '<SYSTEM32>\cmd.exe' /c %TEMP%\20230915T210520_311.exe