Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 4dd5faf0219c45a1
- %WINDIR%\explorer.exe
- %APPDATA%\jcwgsut
- %APPDATA%\jcwgsut
- 'mo###tiur4.com':80
- 'li####ominyt11.at':80
- http://li####ominyt11.at/
- DNS ASK mo###tiur4.com
- DNS ASK nu####onuy5ff.at
- DNS ASK mo###tomo4.net
- DNS ASK su####ulianita1.net
- DNS ASK cu####etuturel4.com
- DNS ASK nu###lushau.com
- DNS ASK li####ominyt11.at
- DNS ASK lu####xionus.net
- DNS ASK li####joer44.com
- DNS ASK ni###minut88.at
- DNS ASK li####ruling.org
- DNS ASK mi###5tunul.com
- DNS ASK sa####u11nuli.com
- DNS ASK ni###kojam.org
- 'localhost':59286
- 'localhost':61787
- '%APPDATA%\jcwgsut'
- '%APPDATA%\jcwgsut' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {64DAB462-6ABF-4057-841C-1A14709CCB79} S-1-5-21-1960123792-2022915161-3775307078-1001:inuhqz\user:Interactive:[1]