Technical Information
- <SYSTEM32>\tasks\updates\kutykyo
- %APPDATA%\kutykyo.exe
- %TEMP%\tmp4ca6.tmp
- %APPDATA%\remcos\logs.dat
- %APPDATA%\kutykyo.exe
- %TEMP%\tmp4ca6.tmp
- '79.##4.225.117':6767
- '%WINDIR%\syswow64\schtasks.exe' /Create /TN "Updates\kuTykYo" /XML "%TEMP%\tmp4CA6.tmp"' (with hidden window)
- '%WINDIR%\syswow64\schtasks.exe' /Create /TN "Updates\kuTykYo" /XML "%TEMP%\tmp4CA6.tmp"