Technical Information
- http://cr#.#ectigo.com/SectigoRSADomainValidationSecureServerCA.crt
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- http://la###aradio.cl/index_files/ss1.exe
- http://oc##.#ectigo.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBRDC9IOTxN6GmyRjyTl2n4yTUczyAQUjYxexFStiuF36Zv5mwXhuAGNYeECEGmjTouN%2FW5s3CDseaiw7qE%3D
- http://la###aradio.cl/index_files/ss2.exe
- http://la###aradio.cl/index_files/ss3.exe
- http://la###aradio.cl/index_files/ss4.exe
- http://la###aradio.cl/index_files/soft.exe
- DNS ASK ip###ger.org
- DNS ASK cr#.#ectigo.com
- DNS ASK microsoft.com
- DNS ASK la###aradio.cl
- DNS ASK oc##.#ectigo.com
- '%WINDIR%\syswow64\cmd.exe' /c ping 127.0.0.1 && del "<Full path to file>" >> NUL' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ping 127.0.0.1 && del "<Full path to file>" >> NUL
- '%WINDIR%\syswow64\ping.exe' 127.0.0.1