Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'ViaRegHDD' = '"<Full path to file>"'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\InstallUtil.exe' /logtoconsole=false /logfile= /u "<Full path to file>"
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\RegAsm.exe
- %APPDATA%\23EF5514-3059-436F-A4A7-4CEFAAB20EB1\run.dat
- %APPDATA%\ViaFolder\AdobeCSS.EXE
- %APPDATA%\ViaFolder\AdobeCSS.EXE
- %APPDATA%\ViaFolder\AdobeCSS.EXE
- 'em#####g45.pdns.stream':4052
- DNS ASK em#####g45.pdns.stream