Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'DrvUpdater' = '%APPDATA%\DRPSu\DrvUpdater.exe'
- %APPDATA%\drpsu\drvupdater.exe
- %TEMP%\drvupdater.run.bat
- DNS ASK up###e.drp.su
- '%APPDATA%\drpsu\drvupdater.exe'
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\DrvUpdater.Run.bat" "' (with hidden window)
- '%WINDIR%\syswow64\cmd.exe' /c ""%TEMP%\DrvUpdater.Run.bat" "