Technical Information
- %WINDIR%\syswow64\eudcedit.exe
- %WINDIR%\syswow64\pcaui.exe
- %WINDIR%\syswow64\sethc.exe
- %WINDIR%\syswow64\dccw.exe
- %WINDIR%\syswow64\eudcedit.exe
- %WINDIR%\syswow64\pcaui.exe
- %WINDIR%\syswow64\sethc.exe
- C:\loldsb.ini
- %TEMP%\gospn.log
- %TEMP%\gospn.log
- '22#.#7.96.132':9003
- '22#.#7.96.132':9003
- '%WINDIR%\syswow64\dccw.exe'
- '%WINDIR%\syswow64\cmd.exe' /c echo Y|cacls "<DRIVERS>\etc\hosts" /t /p everyone:f
- '%WINDIR%\syswow64\cmd.exe' /S /D /c" echo Y"
- '%WINDIR%\syswow64\cacls.exe' "<DRIVERS>\etc\hosts" /t /p everyone:f
- '%WINDIR%\syswow64\cmd.exe' /c echo Y|cacls "<DRIVERS>\etc\hosts" /t /p everyone:f' (with hidden window)