Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\appointmentapis.url
- %WINDIR%\syswow64\dllhost.exe
- %HOMEPATH%\appointmentapis\appointmentapis.vbs
- %HOMEPATH%\appointmentapis\sgrmlpac.exe
- %APPDATA%\remcos\logs.dat
- '37.#.207.27':5555
- '%WINDIR%\syswow64\dllhost.exe'