Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'REGDATA' = '"%TEMP%\Javase.exe"'
- %TEMP%\javase.exe
- <Full path to file>
- http://m.###ebook.com/home.php?
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- DNS ASK m.###ebook.com
- DNS ASK pr#####april.no-ip.org
- DNS ASK microsoft.com
- '%TEMP%\javase.exe'