Technical Information
- [<HKLM>\software\microsoft\windows\currentversion\run] 'Windows_System_Api' = '<DRIVERS>\windowsapplication.exe'
- <DRIVERS>\windowsapplication.exe
- C:\adsız.bmp
- C:\adsız.bmp
- C:\adsız.bmp
- 'sm##.gmail.com':587
- DNS ASK sm##.gmail.com