Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'System32' = '%APPDATA%\System32.exe'
- %WINDIR%\explorer.exe
- %APPDATA%\system32.exe
- http://du#######ndmoats.blogspot.com/
- http://www.google.com/css/maia.css
- http://fo###.#oogleapis.com/css?fa##################
- http://fo###.gstatic.com/s/opensans/v17/mem5YaGs126MiZpBA-UN_r8OUuht.eot
- http://fo###.gstatic.com/s/materialiconsextended/v50/kJEjBvgX7BgnkSrUwT8UnLVc38YydejYY-oE_LvN.eot
- DNS ASK du#######ndmoats.blogspot.com
- DNS ASK bl##ger.com
- DNS ASK fo###.#oogleapis.com
- DNS ASK google.com
- DNS ASK fo###.gstatic.com
- DNS ASK go#####analytics.com
- DNS ASK re#####es.blogblog.com
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%APPDATA%\system32.exe'
- '%WINDIR%\explorer.exe'