Technical Information
- [<HKLM>\SYSTEM\ControlSet001\Services\MediaControl\Parameters] 'serviceDll' = '%ALLUSERSPROFILE%\BaseKst\KingKong.dll'
- [<HKLM>\SYSTEM\ControlSet001\Services\MediaControl] 'ImagePath' = '<SYSTEM32>\svchost.exe -k netsvcs'
- [<HKLM>\SYSTEM\ControlSet001\Services\MediaControl] 'Start' = '00000002'
- %ALLUSERSPROFILE%\BaseKst\KingKong.dll
- <Full path to file>
- '<L####NET>.229.128':80
- '<SYSTEM32>\svchost.exe' -k netsvcs
- '<SYSTEM32>\rundll32.exe' "%ALLUSERSPROFILE%\basekst\kingkong.dll",Rundll32Call
- '<SYSTEM32>\rundll32.exe' "%ALLUSERSPROFILE%\BaseKst\KingKong.dll", Install
- '<SYSTEM32>\cmd.exe' /c del "<Full path to file>"