Technical Information
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] 'Shell' = '%APPDATA%\Microsoft\taskmgr\taskmgr.exe'
- '<SYSTEM32>\cmd.exe' /c setx GPU_SINGLE_ALLOC_PERCENT 100 & setx GPU_MAX_ALLOC_PERCENT 100 & setx GPU_USE_SYNC_OBJECTS 1 & setx GPU_MAX_HEAP_SIZE 100 & setx GPU_FORCE_64BIT_PTR 0
- opera.exe
- %APPDATA%\Microsoft\notaut.txt
- 'up###e021.com':80
- 'www.bing.com':80
- DNS ASK up###e021.com
- DNS ASK www.bing.com