Technical Information
- %APPDATA%\microsoft\windows\start menu\programs\startup\ftbsvvxv.url
- %WINDIR%\microsoft.net\framework\v2.0.50727\regasm.exe
- %TEMP%\svc.exe
- %TEMP%\patch-fmvc.exe
- %TEMP%\dup2patcher.dll
- %APPDATA%\systemapps\kdm2dybb.vbs
- %APPDATA%\systemapps\wscadminui.exe
- 'ha###.mine.nu':1996
- DNS ASK ha###.mine.nu
- '%TEMP%\svc.exe'
- '%TEMP%\patch-fmvc.exe'
- '%WINDIR%\microsoft.net\framework\v2.0.50727\regasm.exe'