Technical Information
- <SYSTEM32>\svchost.exe
- %LOCALAPPDATA%\microsoft\windows\history\history.ie5\mshist012020112220201123\index.dat
- http://ma##su.best/build
- http://ma##su.best/favicon.ico
- http://ma####.best:8012/api/hello via ma##su.best
- DNS ASK ma##su.best
- ClassName: 'Static' WindowName: ''
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
- '%ProgramFiles%\internet explorer\iexplore.exe' -Embedding
- '<SYSTEM32>\svchost.exe'