Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'newapp' = '%APPDATA%\newapp\newapp.exe'
- %HOMEPATH%\rtdcb0e3dd1c06e6a384daf75bfa68bnvp4dy
- %APPDATA%\newapp\newapp.exe
- %APPDATA%\newapp\newapp.exe
- 'microsoft.com':80
- DNS ASK mm####idbhmibnr.ml
- DNS ASK microsoft.com