File size 276,480 bytes
MD5: 0x29F85A0C52411773AA2BB948ECDC4D76
SHA-1: 0x5CA7344508EC2EEF0A84E35150AC6FD25FC02C1C
============================================================
Files Created
C:\WINDOWS\system32\cao110.dll (0-9)
Files size 55,296 bytes
MD5: 0x34E9FE75D59053FCDDC92B88AB1CC012
SHA-1: 0x8B40882B88CBDB446CCBA0FDF38D86899A68AB73
C:\WINDOWS\system32\cao220.txt
C:\WINDOWS\system32\zhido.exe
Registry ModificationsValue Added
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\
zhido : C:\WINDOWS\system32\zhido.exe
