Technical Information
- D:\¶«ý¸¹éà ´µúæß¼¾\<File name>.exe
- D:\¶«ý¸¹éà ´µúæß¼¾\mir2.dat
- %HOMEPATH%\desktop\¶«ý¸¹éà ´µúæß¼¾.lnk
- D:\¶«ý¸¹éà ´µúæß¼¾\resource\c10b4bbe0517ac5c.xml
- %LOCALAPPDATA%\microsoft\internet explorer\msimgsiz.dat
- '10#.#1.210.108':8090
- 'wv#.#hmir2.com':80
- http://10#.##.210.108:8090/2.txt via 10#.#1.210.108
- http://wv#.#hmir2.com/Login_frame/
- DNS ASK wv#.#hmir2.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- 'D:\¶«ý¸¹éà ´µúæß¼¾\<File name>.exe' <Full path to file>