Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'AdobeARM' = '%WINDIR%\AdobeARM.exe'
- %APPDATA%\WUDFdrv.exe
- %WINDIR%\AdobeARM.exe
- 'ma#.#aver.com':443
- DNS ASK ma#.#aver.com
- '<SYSTEM32>\cmd.exe' /C "netsh advfirewall firewall show rule name=\"AdobeARM\""
- '<SYSTEM32>\netsh.exe' advfirewall firewall show rule name=\"AdobeARM\"
- '<SYSTEM32>\cmd.exe' /Q /C reg add "HKCU\Software\Kakao Corp" /f
- '<SYSTEM32>\reg.exe' add "HKCU\Software\Kakao Corp" /f