Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'MaxxAudio' = '%WINDIR%\MaxxAudio.exe'
- '%ProgramFiles%\Internet Explorer\IEXPLORE.EXE'
- IEXPLORE.EXE
- %ALLUSERSPROFILE%\DRM\xs\nqjyxudknzugmahddt
- from <Full path to file> to %WINDIR%\MaxxAudio.exe
- 'mu###.websegoo.net':80
- 'mu###.websegoo.net':53
- http://mu###.websegoo.net/023288BA9BDEE1A73A2CAFC3
- DNS ASK mu###.websegoo.net