Technical Information
- '<SYSTEM32>\schtasks.exe' /create /TN "Windows\Windows Fixer 3937 " /XML "%HOMEPATH%\AppData\Local\MCYG7TKrir\x"
- '%HOMEPATH%\AppData\Local\MCYG7TKrir\fontdrvhostt.exe'
- '%HOMEPATH%\AppData\Local\MCYG7TKrir\fontdrvhostt-t.exe'
- %HOMEPATH%\AppData\Local\MCYG7TKrir\XML.txt
- %HOMEPATH%\AppData\Local\MCYG7TKrir\x
- %APPDATA%\Imminent\Logs\22-07-2017
- %HOMEPATH%\AppData\Local\MCYG7TKrir\fontdrvhostt-t.exe
- %HOMEPATH%\AppData\Local\MCYG7TKrir\fontdrvhost.Text
- %HOMEPATH%\AppData\Local\MCYG7TKrir\MCconfig.dll
- %HOMEPATH%\AppData\Local\MCYG7TKrir\WindowsCodecsRaw.txt
- from %HOMEPATH%\AppData\Local\MCYG7TKrir\fontdrvhost.Text to %HOMEPATH%\AppData\Local\MCYG7TKrir\fontdrvhostt.exe
- '18#.#63.125.252':1222