Technical Information
- [<HKLM>\System\CurrentControlSet\Services\WinRing0_1_2_0] 'ImagePath' = '%APPDATA%\WinCFG\Libs\WinRing0x64.sys'
- 'WinRing0_1_2_0' %APPDATA%\WinCFG\Libs\WinRing0x64.sys
- <SYSTEM32>\notepad.exe
- %TEMP%\e653d73e45833b6c
- %APPDATA%\wincfg\libs\winring0x64.sys
- 's3.##lopool.org':7010
- DNS ASK s3.##lopool.org
- '<SYSTEM32>\notepad.exe' -B --coin=monero --url=s3.solopool.org:7010 --user=43M8nGFJFUwZJ3juqtKnzpVVTFGhVRYMsXSUvM7xqVrwZUKEeZeoTQyUbrWKz4NvJjZbPYUfuVeJ2RBPAB9gmx317Hj6V33 --pass=0001 --cpu-max-threads-hint=50 --donat...