Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\microsoft defeander.lnk
- <Drive name for removable media>:\Г¶zelim dokunma.exe
- User Account Control (UAC)
- DNS server to '<DNS_SERVER>'
- %TEMP%\tcd2a9dd15.tmp\mgasisst.exe
- C:\Г¶zelim dokunma.exe
- D:\Г¶zelim dokunma.exe
- %TEMP%\tcd2a9dd15.tmp\mgasisst.exe
- 'sm##.yandex.com':587
- DNS ASK sm##.yandex.com
- '%TEMP%\tcd2a9dd15.tmp\mgasisst.exe'