Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'MyStart' = '<Full path to file>'
- %HOMEPATH%\documents\vlcpvideov1.0.1\<File name>.exe
- <Current directory>\ff
- <Current directory>\ff-shm
- <Current directory>\ff-shm
- <Current directory>\ff
- '10#.#06.202.174':80
- 'fa###ook.com':443
- http://10#.#06.202.174/seemorebty/il.php?e=########
- 'fa###ook.com':443
- DNS ASK fa###ook.com