Technical Information
- %WINDIR%\microsoft.net\framework\v4.0.30319\vbc.exe
- %ALLUSERSPROFILE%\remcos\logs.dat
- 'cl####.kozow.com':2404
- 'ge###ugin.net':80
- http://ge###ugin.net/json.gp
- 'cl####.kozow.com':2404
- DNS ASK cl####.kozow.com
- DNS ASK ge###ugin.net
- '%WINDIR%\microsoft.net\framework\v4.0.30319\vbc.exe'