Technical Information
- %TEMP%\cq0d8hxk8l
- %TEMP%\cq0d8hxk8l.dll
- http://cl###fmalw.ws/0lq45
- http://www.of####dhandel.de/yv815pa
- http://www.vi######uisje-bredene.be/63uzc3g
- http://79.##.153.93/9bu0ns3
- DNS ASK cl###fmalw.ws
- DNS ASK of####dhandel.de
- DNS ASK do##te.com
- DNS ASK vi######uisje-bredene.be
- '%WINDIR%\syswow64\rundll32.exe' %TEMP%\CQ0D8H~1.DLL,qwerty 323