Technical Information
- <SYSTEM32>\tasks\ensuringaproductivityadataa
- C:\users\public\documents\0thgg\inin.txt
- C:\users\public\documents\0thgg\inin.ini
- C:\users\public\documents\0thgg\sru8v2.dat
- C:\users\public\documents\0thgg\sru8v2.exe
- %TEMP%\_ir_tu2_temp_0\11.jpg
- %TEMP%\_ir_tu2_temp_0\2.jpg
- %TEMP%\_ir_tu2_temp_0\3.jpg
- %TEMP%\_ir_tu2_temp_0\_tuprojdt.dat
- %TEMP%\xshell 6 update log.txt
- C:\users\public\documents\0thgg\khe.exe
- C:\users\public\documents\0thgg\khe.dat
- C:\xxxx.ini
- 'iu##eu.net':7019
- '38.##5.9.237':7000
- '38.##5.9.237':7000
- DNS ASK iu##eu.net
- ClassName: 'CTXOPConntion_Class' WindowName: ''
- 'C:\users\public\documents\0thgg\sru8v2.exe'
- 'C:\users\public\documents\0thgg\sru8v2.exe' ' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c echo.>c:\xxxx.ini' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c echo.>c:\xxxx.ini