Technical Information
Modifies file system :
Creates the following files:
- <SYSTEM32>\GroupPolicy\User\Scripts\script.ini
- %WINDIR%\Temp\svchost.exe
Network activity:
Connects to:
- 'zz###.3322.org':2222
UDP:
- DNS ASK zz###.3322.org