Technical Information
Modifies file system :
Creates the following files:
- <SYSTEM32>\GroupPolicy\User\Scripts\script.ini
- %WINDIR%\Temp\svchost.exe
Network activity:
Connects to:
- 'ji####0.3322.org':2008
UDP:
- DNS ASK ji####0.3322.org