Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'KService' = '<SYSTEM32>\KService.exe'
- %WINDIR%\Tasks\DM_Install_Program.job
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\101178.exe' = '%TEMP%\101178.exe:*:Enabled:DM'
- '%TEMP%\101178.exe'
- %TEMP%\101178.exe
- %WINDIR%\Temp\mssoak.exe
- <SYSTEM32>\softverfile.ini
- <SYSTEM32>\KService.exe
- 'dm##.dmcast.com':80
- dm##.dmcast.com/setup/iebar.exe
- DNS ASK dm##.dmcast.com
- ClassName: 'Shell_TrayWnd' WindowName: ''