Technical Information
- %WINDIR%\microsoft.net\framework\v4.0.30319\regasm.exe
- http://we#.###erit.com:8000/ajp/public/04cf127dcec676c7205ece4e0d2f74e2.php via we#.#iderit.com
- DNS ASK we#.#iderit.com
- '%WINDIR%\microsoft.net\framework\v4.0.30319\regasm.exe' ' (with hidden window)
- '%WINDIR%\microsoft.net\framework\v4.0.30319\regasm.exe'