Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 2453304f24234954
- %WINDIR%\explorer.exe
- %APPDATA%\rhgtcdd
- %APPDATA%\rhgtcdd
- 'po###ulit.org':80
- 'hu###lior.net':80
- 'bu###u55t.net':80
- 'so###tlic4.net':80
- 'no####sa5org.org':80
- 'to###olihul.net':80
- 'so####ka51hub.net':80
- 'hu###ui3.net':80
- 'bu###uka1.net':80
- http://so####ka51hub.net/1
- http://to###olihul.net/1
- http://bu###uka1.net/1
- http://po###ulit.org/
- http://hu###lior.net/
- http://bu###u55t.net/
- http://so###tlic4.net/
- http://no####sa5org.org/
- http://to###olihul.net/
- DNS ASK po###ulit.org
- DNS ASK hu###lior.net
- DNS ASK bu###u55t.net
- DNS ASK so###tlic4.net
- DNS ASK no####sa5org.org
- DNS ASK nu###jnuli.org
- DNS ASK to###olihul.net
- DNS ASK so####ka51hub.net
- DNS ASK hu###ui3.net
- DNS ASK bu###uka1.net
- '%APPDATA%\rhgtcdd'
- '%APPDATA%\rhgtcdd' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {514FD826-39AA-488B-9162-108F8F2A895B} S-1-5-21-2594934582-3011428313-3661137593-1000:wskgtk\user:Interactive:[1]