Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '8746d62c81bb0c573a0a1086f9955c7b' = '"%APPDATA%\dllhost.exe" ..'
- [<HKLM>\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] '8746d62c81bb0c573a0a1086f9955c7b' = '"%APPDATA%\dllhost.exe" ..'
- %APPDATA%\microsoft\windows\start menu\programs\startup\8746d62c81bb0c573a0a1086f9955c7b.exe
- %APPDATA%\microsoft\windows\start menu\programs\startup\ccleaner.lnk
- %APPDATA%\dllhost.exe
- '<LOCALNET>.234.144':7878
- 'pa###bin.com':443
- DNS ASK pa###bin.com
- '%APPDATA%\dllhost.exe'