Technical Information
- '17#.#45.33.131':80
- 'to#s.is':443
- http://17#.#45.33.131/4311/htm/HTMLedgeIEbrowserHistoryCleaner.dOC
- 'to#s.is':443
- DNS ASK to#s.is
- '%ProgramFiles%\microsoft office\office14\winword.exe' -Embedding
- '%CommonProgramFiles%\microsoft shared\equation\eqnedt32.exe' -Embedding