Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 72bbca47c6d40c48
- %WINDIR%\explorer.exe
- irbubeg
- %APPDATA%\irbubeg
- %APPDATA%\irbubeg
- 'ho####ile-host6.com':80
- '45.##.139.224':80
- '19#.#33.8.122':80
- 'tr##sfer.sh':443
- http://ho####ile-host6.com/
- 'tr##sfer.sh':443
- DNS ASK ho####ile-host6.com
- DNS ASK tr##sfer.sh
- '%APPDATA%\irbubeg'
- '%APPDATA%\irbubeg' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {A579C9C5-8775-48D4-8F25-E7BDBBA0A186} S-1-5-21-1960123792-2022915161-3775307078-1001:mycqjppnjyo\user:Interactive:[1]