Technical Information
- <SYSTEM32>\svchost.exe
- %HOMEPATH%\Local Settings\<INETFILES>\Content.IE5\KHMHGZ4F\icanhazip[1]
- <Full path to file>
- 'ic###azip.com':80
- '19#.#49.90.166':12281
- '69.#.204.114':443
- '69.##4.171.44':443
- '65.##.236.173':443
- '24.##8.217.188':443
- '17#.#16.247.74':443
- '77.##.30.156':443
- '37.##.144.177':443
- '87.##9.142.189':443
- '85.##5.104.170':443
- '76.##.81.120':443
- http://ic###azip.com/
- DNS ASK ic###azip.com
- '<SYSTEM32>\svchost.exe'