Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'f5f979d055717ae407c424d41b6c88fa' = '"%TEMP%\taskmang.exe" ..'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'f5f979d055717ae407c424d41b6c88fa' = '"%TEMP%\taskmang.exe" ..'
- %HOMEPATH%\Start Menu\Programs\Startup\f5f979d055717ae407c424d41b6c88fa.exe
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] '%TEMP%\taskmang.exe' = '%TEMP%\taskmang.exe:*:Enabled:taskmang.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%TEMP%\taskmang.exe" "taskmang.exe" ENABLE
- %TEMP%\taskmang.exe
- 'av#####nk.linkpc.net':1010
- DNS ASK av#####nk.linkpc.net
- '%TEMP%\taskmang.exe'