Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'msslr' = '%WINDIR%\msslr.exe regrun'
- %WINDIR%\msslr.exe
- %WINDIR%\msslr.exe
- <Full path to virus>
- 'h1####1m4.sytes.net':50468
- DNS ASK h1####1m4.sytes.net
- '<Private IP address>':1035
- ClassName: 'Shell_TrayWnd' WindowName: ''
- ClassName: 'Indicator' WindowName: ''