Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'RRhA7EQ05uE' = '%ALLUSERSPROFILE%\QBC0WdcMxQG\b6YqLw7kgpDC.exe'
- %ALLUSERSPROFILE%\QBC0WdcMxQG\b6YqLw7kgpDC.exe
- %TEMP%\8ubPZkCgUb.exe
- %ALLUSERSPROFILE%\QBC0WdcMxQG\RCX1.tmp
- %ALLUSERSPROFILE%\QBC0WdcMxQG\b6YqLw7kgpDC.exe
- %TEMP%\8ubPZkCgUb.exe
- %ALLUSERSPROFILE%\QBC0WdcMxQG\b6YqLw7kgpDC.exe
- ClassName: 'Indicator' WindowName: ''