Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'HD Intel Audio' = '%APPDATA%\Microsoft\Audio Intel HD.exe'
- %APPDATA%\microsoft\audio intel hd.exe
- %APPDATA%\microsoft\credentials\firstrun.png
- from <Full path to file> to %APPDATA%\microsoft\winupdater.exe
- 'sm##.mail.ru':587
- DNS ASK sm##.mail.ru
- DNS ASK go#####ailer.3owl.com