Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 20f0c21f37f35332
- %APPDATA%\rwrtbsr
- %TEMP%\2a3b.exe
- %TEMP%\32c4.exe
- %APPDATA%\rwrtbsr
- 'po###ulit.org':80
- http://po###ulit.org/
- DNS ASK po###ulit.org
- DNS ASK ge############bces.jomf6mtobkl32eai1qwqxsxpnfyv2s
- '%TEMP%\2a3b.exe'
- '%TEMP%\32c4.exe'