Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'MSASCuiL' = '%APPDATA%\chrome.exe'
- %HOMEPATH%\Start Menu\Programs\Startup\MSASCuiL.scr
- %HOMEPATH%\Start Menu\Programs\Startup\Windows Defender notification icon.lnk
- <Drive name for removable media>:\RECYCLE\USBSecurity.exe
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe
- %TEMP%\oBdtjWSTUK.txt
- %APPDATA%\chrome.exe
- <Drive name for removable media>:\RECYCLE\USBSecurity.exe
- 'localhost':1453
- 'sk##.#erveirc.com':1453
- DNS ASK sk##.#erveirc.com
- '%APPDATA%\chrome.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\aspnet_compiler.exe'