Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'explorer.exe' = '%APPDATA%\Microsoft\explorer.exe'
- '%APPDATA%\Microsoft\explorer.exe'
- %APPDATA%\Microsoft\explorer.exe
- %APPDATA%\Microsoft\explorer.exe
- %APPDATA%\Microsoft\explorer.exe
- '5.##.43.144':80
- http://5.##.43.144/web/gate.php?ke#########################################################################