Technical Information
- %WINDIR%\explorer.exe
- iexplore.exe
- <File name>.exe
- <Full path to file>
- from <Full path to file> to <Full path to file>.bak
- 'hi.##idu.com':80
- http://hi.##idu.com/aegifjftrggluze/item/be185dc989cae4f4984aa0df
- DNS ASK hi.##idu.com
- DNS ASK in####ow.baidu.com