Technical Information
- <SYSTEM32>\tasks\firefox default browser agent a9d3a160e60f3a32
- '%APPDATA%\microsoft\windows\templates\920815.dat'
- %APPDATA%\microsoft\windows\templates\920815.dat
- %TEMP%\9419.tmp
- %APPDATA%\rawavtu
- %APPDATA%\rawavtu
- %APPDATA%\microsoft\windows\templates\920815.dat
- 'mp###agertzz.ru':80
- 'gm##hop.ru':80
- 'um###stms.ug':80
- 'fa#####pertyzone.com':80
- 'ov####mansera.ru':80
- 'vi###axcopy.ru':80
- 'se####bexisecel.ru':80
- 'we###omboss.com':80
- 'mo###ivoweb.ru':80
- http://ci####pproperty.ru/localmod/nmode.exe
- http://mp###agertzz.ru/
- http://um###stms.ug/
- http://fa#####pertyzone.com/
- http://ov####mansera.ru/
- http://vi###axcopy.ru/
- http://se####bexisecel.ru/
- http://we###omboss.com/
- http://mo###ivoweb.ru/
- DNS ASK ci####pproperty.ru
- DNS ASK mp###agertzz.ru
- DNS ASK gm##hop.ru
- DNS ASK um###stms.ug
- DNS ASK fa#####pertyzone.com
- DNS ASK ov####mansera.ru
- DNS ASK vi###axcopy.ru
- DNS ASK se####bexisecel.ru
- DNS ASK we###omboss.com
- DNS ASK ba####operty.gov.ug
- DNS ASK mo###ivoweb.ru