Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'explores.exe' = '%ProgramFiles%\Internet Explorer\explores.exe'
- %ProgramFiles%\Internet Explorer\explores.exe
- %ProgramFiles%\Internet Explorer\explores.exe
- <Full path to file>
- '25##.sogoui.com':2522
- 'any':0
- DNS ASK 25##.sogoui.com
- '%ProgramFiles%\Internet Explorer\explores.exe'
- '<SYSTEM32>\cmd.exe' /c del <Full path to file> > nul