Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'ProPlayer' = '%APPDATA%\ProPlayer\Player.exe.exe'
- %WINDIR%\microsoft.net\framework\v2.0.50727\regsvcs.exe
- %TEMP%\dll.exe
- %TEMP%\patch.x32.13.xx.upd1.exe
- %TEMP%\dup2patcher.dll
- %APPDATA%\proplayer\player.exe.exe
- 'ha###.mine.nu':1993
- DNS ASK ha###.mine.nu
- '%TEMP%\dll.exe'
- '%TEMP%\patch.x32.13.xx.upd1.exe'
- '%WINDIR%\microsoft.net\framework\v2.0.50727\regsvcs.exe'