Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\_ayqbgu3_.lnk
- %APPDATA%\microsoft\windows\start menu\programs\startup\_ayqbgu3_ex.lnk
- %APPDATA%\microsoft\windows\start menu\programs\startup\_ayqbgu3_y.lnk
- C:\_ayqbgu3_\jioweid
- C:\users\public\jioweid.cmd
- C:\_ayqbgu3_\jioweidy
- C:\users\public\jioweidy.cmd
- C:\users\public\230123
- '21#.#38.82.27':80
- '<SYSTEM32>\shutdown.exe' /r /t 10