Technical Information
- [<HKLM>\System\CurrentControlSet\Services\455DRrHg5] 'ImagePath' = '%WINDIR%\455DRrHg5.sys'
- [<HKLM>\System\CurrentControlSet\Services\455DRrHg5] 'Start' = '00000001'
- '455DRrHg5' %WINDIR%\455DRrHg5.sys
- DNS server to '114.114.114.114'
- DNS server to '<DNS_SERVER>'
- %WINDIR%\455drrhg5.sys
- <DRIVERS>\as8c06qr.sys
- http://si###torage.com/yun2016/Atshz.txt
- http://si###torage.com/yun2016/B64d.rar
- http://os#.##iyungx.com/data.php?t=#####
- http://ht##.##crosoftcs.com/data.php?t=#####
- http://ht##.##crosoftcs.com/xinlistj.rar
- http://ht##.##crosoftcs.com/listh.rar
- http://ht##.##crosoftcs.com/md5exe.rar
- http://ht##.##crosoftcs.com/exeFeatureCode.rar
- http://ht##.##crosoftcs.com/updata64.php?t=#######
- http://ht##.##crosoftcs.com/updata64.rar
- DNS ASK si###torage.com
- DNS ASK ba##u.com
- DNS ASK os#.##iyungx.com
- DNS ASK ht##.##crosoftcs.com
- DNS ASK ht###.#ernel-sys.com