Technical Information
- <SYSTEM32>\tasks\firefox default browser agent f91f283308ed9344
- %TEMP%\cc4f.tmp
- %APPDATA%\bejgsst
- %APPDATA%\bejgsst
- %TEMP%\cc4f.tmp
- %TEMP%\cc4f.tmp
- 'ww###833.com':80
- 'co#####intonterias.com':80
- http://ww###833.com/upload/
- http://co#####intonterias.com/upload/
- DNS ASK kh####lahmed.com
- DNS ASK tw#####association.com
- DNS ASK ww###833.com
- DNS ASK co#####intonterias.com
- DNS ASK ma####ukunaga.com
- DNS ASK gn##ids.com
- '%APPDATA%\bejgsst'
- '%APPDATA%\bejgsst' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {CEEA19B1-17CA-41A7-8207-A32CADDFF8FD} S-1-5-21-1960123792-2022915161-3775307078-1001:tbjxyrwktyb\user:Interactive:[1]