Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'yigygggligiglglgiigligi' = '%APPDATA%\Microsoft\Windows\Start Menu\Programs\Startup\Hal\Clien_Builder\Hall.exe'
- %APPDATA%\microsoft\windows\start menu\programs\startup\hal\clien_builder\hall.exe
- %APPDATA%\microsoft\windows\start menu\programs\startup\fgjjjggjgjgjhyiyigigyiigiiigi.lnk
- 'localhost':555