Technical Information
- <SYSTEM32>\rundll32.exe
- %LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012020042920200430\index.dat
- http://li##.######nableworkplacewellness.com/images/2mCQqzeaZmH2/TfZBp0tluyE/uTrlgqeA3Pyeen/07e1bvNCexX_2B_2F_2FU/4sWGQ4ui4lbsTd4H/AJncAAoNd7Zad40/4hWhWXKFYO9Wm99hbP/rT3nCOmn4/eb_2Fiyd43FonLM7b...
- http://li##.######nableworkplacewellness.com/favicon.ico
- http://li##.######nableworkplacewellness.com/images/qI2ennjFziwFD/gobK4e_2/F_2BSPMcP36cO5T0_2B8NgK/hTEnsesNX9/nY22metiJaF_2F4z_/2BiBGlU0i_2F/Ik1iZfSGCfB/xKmy6mSlANdplm/W1LMAq50e86dRV5Gcv7Fd/ZlW...
- http://li##.######nableworkplacewellness.com/images/DLRLD2_2F7DxYedv/4elB3T088yGSgxT/XsPTM0738jraMsNZhE/f6SnUqKIH/LM_2B9J7s8Tcmna_2FAR/5h9cT21UlZcSmRRdw_2/B9cuM3noC1QHpOiKVZCd_2/BZ6aUXK90pWAy/Z...
- DNS ASK mc#.#vast.com
- DNS ASK li##.######nableworkplacewellness.com
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '<SYSTEM32>\rundll32.exe' Shell32.dll,Control_RunDLL /?' (with hidden window)
- '<SYSTEM32>\control.exe' /?
- '<SYSTEM32>\rundll32.exe' Shell32.dll,Control_RunDLL /?