Technical Information
- %HOMEPATH%\Start Menu\Programs\Startup\fUJpFsVtt.lnk
- '%TEMP%\rundll.exe'
- '<SYSTEM32>\svchost.exe'
- <SYSTEM32>\svchost.exe
- %TEMP%\rundll.exe
- %APPDATA%\YgyekGjdmfl\2458.xml
- %APPDATA%\YgyekGjdmfl\sPZzjhoEd.exe
- from %APPDATA%\YgyekGjdmfl\2458.xml to %APPDATA%\YgyekGjdmfl\sPZzjhoEd.exe
- 'ms######ices.ignorelist.com':1777
- DNS ASK ms######ices.ignorelist.com