Technical Information
- <SYSTEM32>\tasks\skpey
- <PATH_SAMPLE>.log
- C:\users\public\user.zip
- C:\users\public\enterprise\task.dat
- C:\users\public\enterprise\7z.dll
- C:\users\public\enterprise\skpey.exe
- C:\users\public\enterprise\7zorg.dll
- C:\users\public\enterprise\idmmzcc3.xpi
- C:\users\public\enterprise\skpey.lnk
- C:\users\public\enterprise\skpey.dat
- C:\users\public\user.zip
- '18#.#63.243.183':443
- 'pa###bin.com':443
- '<LOCALNET>.21.79':7159
- 'wo#####ss.null.homes':7159
- 'pa###bin.com':443
- DNS ASK pa###bin.com
- DNS ASK wo#####ss.null.homes
- 'C:\users\public\enterprise\skpey.exe' u C:\Users\Public\Mdfgfx.lzo -u- -up0q3x2z0!C:\Users\Public\ddajDI.lzo * -r
- 'C:\users\public\enterprise\skpey.exe' u C:\Users\Public\Mdfgfx.lzo -u- -up0q3x2z0!C:\Users\Public\ddajDI.lzo * -r' (with hidden window)