Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\] 'systemtask' = '%APPDATA%\systemtaskl\fgh.exe'
- fgh.exe
- %APPDATA%\systemtaskl\fgh.exe
- http://na###epack.cc/files/Host_qCFnmiNcq211.bin
- DNS ASK na###epack.cc
- DNS ASK pl#####.nsupdate.info
- '%APPDATA%\systemtaskl\fgh.exe' -m "<Full path to file>"