Technical Information
- <SYSTEM32>\tasks\firefox default browser agent ca5b9c42ec768d8e
- %APPDATA%\versrvv
- %APPDATA%\versrvv
- 'pe##icut.at':80
- 'ru###acco.ru':80
- 'pi###ia-life.ru':80
- http://pe##icut.at/tmp/
- http://ru###acco.ru/tmp/
- http://pi###ia-life.ru/tmp/
- DNS ASK pe##icut.at
- DNS ASK ru###acco.ru
- DNS ASK ai###lar.com
- DNS ASK pi###ia-life.ru
- '%APPDATA%\versrvv'
- '%APPDATA%\versrvv' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {E041B0D8-4D83-49DB-998C-DD71DEC6306D} S-1-5-21-1960123792-2022915161-3775307078-1001:hstawj\user:Interactive:[1]