Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 1bfdc3930c0867aa
- %APPDATA%\cguuesu
- %APPDATA%\cguuesu
- 'co##lee.at':80
- 'bi##acc.ru':80
- 'to##ap.com':80
- 'pi###ia-life.ru':80
- 'pi###ia-life.ru':443
- 'vi###atos.com':80
- 'mo##o.ru':80
- 'pk##ev.net':80
- http://co##lee.at/upload/
- http://bi##acc.ru/upload/
- http://to##ap.com/upload/
- http://pi###ia-life.ru/upload/
- http://vi###atos.com/upload/
- http://mo##o.ru/upload/
- http://pk##ev.net/upload/
- 'pi###ia-life.ru':443
- DNS ASK co##lee.at
- DNS ASK du###etcao.com
- DNS ASK bi##acc.ru
- DNS ASK to##ap.com
- DNS ASK bb##d.com
- DNS ASK pi###ia-life.ru
- DNS ASK cu###eport.com
- DNS ASK vi###atos.com
- DNS ASK mo##o.ru
- DNS ASK pk##ev.net
- '%APPDATA%\cguuesu'
- '%APPDATA%\cguuesu' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {FFAFA3E3-2946-4893-9F69-A030A51AEEEF} S-1-5-21-1960123792-2022915161-3775307078-1001:ybjkwupljaq\user:Interactive:[1]