Technical Information
- '<SYSTEM32>\regsvr32.exe' /S ..\cui1.ocx
- '<SYSTEM32>\regsvr32.exe' /S ..\cui2.ocx
- '<SYSTEM32>\regsvr32.exe' /S ..\cui3.ocx
- '<SYSTEM32>\regsvr32.exe' /S ..\cui4.ocx
- <Current directory>\15721000
- <PATH_SAMPLE>.xls
- 'bd##n.com':80
- 'ba####sonido.com.ar':80
- 'ba###tbd.com':80
- http://bd##n.com/cache/4G8pl/
- http://ba####sonido.com.ar/cgi-bin/AmUUPhWK6oTKLzHpl7zm/
- http://ba###tbd.com/ckfinder/K0a/
- DNS ASK bd##n.com
- DNS ASK ba####sonido.com.ar
- DNS ASK ba###tbd.com
- '<SYSTEM32>\regsvr32.exe' /S ..\cui1.ocx' (with hidden window)
- '<SYSTEM32>\regsvr32.exe' /S ..\cui2.ocx' (with hidden window)
- '<SYSTEM32>\regsvr32.exe' /S ..\cui3.ocx' (with hidden window)
- '<SYSTEM32>\regsvr32.exe' /S ..\cui4.ocx' (with hidden window)