Technical Information
- <SYSTEM32>\tasks\google chrome
- %WINDIR%\explorer.exe
- %ALLUSERSPROFILE%\google\chrome.exe
- 'dl.###oadgram.me':443
- 'microsoft.com':80
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- 'dl.###oadgram.me':443
- DNS ASK dl.###oadgram.me
- DNS ASK microsoft.com
- '%ALLUSERSPROFILE%\google\chrome.exe'
- '%WINDIR%\explorer.exe' 1620' (with hidden window)
- '%WINDIR%\explorer.exe' YmMxcWVzYTh5am1rNWh5ZGFqZHJ6OXp6emw3ZXd0ejgwOHV4YXNkNXNyLDRCOFdWaUdlempMRTlONk43anQzY0NIRXRCWDNQTjNIY0V3bWhkc0IxdWg5OEVheXM2RXpzRDNaWWNaUnFQS3BpTUVTVlhpeG9lSm1aODZqeXpxYVZVNHpFS2FZY2lWLDB4NGMxN...' (with hidden window)
- '%ALLUSERSPROFILE%\google\chrome.exe' ' (with hidden window)
- '%WINDIR%\explorer.exe' 984' (with hidden window)
- '<SYSTEM32>\schtasks.exe' /create /sc minute /mo 1 /tn "Google Chrome" /rl HIGHEST /tr %ALLUSERSPROFILE%\Google\chrome.exe
- '%WINDIR%\explorer.exe' 1620
- '%WINDIR%\explorer.exe' YmMxcWVzYTh5am1rNWh5ZGFqZHJ6OXp6emw3ZXd0ejgwOHV4YXNkNXNyLDRCOFdWaUdlempMRTlONk43anQzY0NIRXRCWDNQTjNIY0V3bWhkc0IxdWg5OEVheXM2RXpzRDNaWWNaUnFQS3BpTUVTVlhpeG9lSm1aODZqeXpxYVZVNHpFS2FZY2lWLDB4NGMxN...
- '<SYSTEM32>\taskeng.exe' {C5F05ACE-4F58-47EF-A1FD-48966F453F38} S-1-5-21-1960123792-2022915161-3775307078-1001:tstwuroysq\user:Interactive:[1]
- '%WINDIR%\explorer.exe' 984