Technical Information
- '<Full path to file>'
- '<SYSTEM32>\svchost.exe' -k netsvcs
- <SYSTEM32>\svchost.exe
- %ALLUSERSPROFILE%\Application Data\Mozilla\UV9FXlFbb1NfWVQPBg.bin
- %ALLUSERSPROFILE%\Application Data\Mozilla\UV9FXlFbb1NfWVQPBg.bin
- '<L###LNET>.0.2':80
- '95.##5.44.136':443
- '80.##.118.245':443
- http:///tA/JSH/qreRG0fIc/PsT/xQF4Z269eyvxu7SNzZLzr3I.cgi?yw##################################################################### via <L###LNET>.0.2
- http:///aYkZnWtjJlROB36vLkHMD9iFK1fx65kFQFC31LZmb1CCunGRh6CURyxHWGJxOGUOB2zKg4ZAmmVQ7hDExhIdg/RYsEb7ahv-NAaMLr1Jy.php via <L###LNET>.0.2