Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Hacked By Ashiyane Digital Security Team' = '<Full path to file>'
- [<HKCU>\software\Microsoft\Windows\CurrentVersion\Run] 'Hacked+By+Ashiyane_Digital_Security_Team.exe' = '%TEMP%\Hacked+By+Ashiyane_Digital_Security_Team.exe'
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Hacked+By+Ashiyane_Digital_Security_Team.exe' = '%TEMP%\Hacked+By+Ashiyane_Digital_Security_Team.exe'
- %WINDIR%\explorer.exe
- firefox.exe
- iexplore.exe
- %TEMP%\hacked+by+ashiyane_digital_security_team.exe