Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 681f9ba8be686c0a
- %APPDATA%\cwvhase
- %APPDATA%\cwvhase
- 'mi##tys.at':80
- 'mo##o.ru':80
- 'ki###irate.ru':443
- http://mi##tys.at/tmp/
- http://mo##o.ru/tmp/
- 'ki###irate.ru':443
- DNS ASK mi##tys.at
- DNS ASK mu##in.ru
- DNS ASK ch###elpi.com
- DNS ASK mo##o.ru
- DNS ASK ki###irate.ru
- '%APPDATA%\cwvhase'
- '%APPDATA%\cwvhase' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {0533899E-0D37-4A89-AFBD-C8EEBA0E0248} S-1-5-21-1960123792-2022915161-3775307078-1001:ullesckgb\user:Interactive:[1]