Technical Information
- %APPDATA%\Imminent\Logs\14-12-2017
- %APPDATA%\Imminent\Monitoring\system.dat
- %APPDATA%\Imminent\Monitoring\network.dat
- %APPDATA%\GCKNLYBM\winsys.exe
- %APPDATA%\GCKNLYBM\aFFFFF.xml
- %TEMP%\MMSWT.exe
- %APPDATA%\GCKNLYBM\aFFFFF.xml
- 'ey##.#uckdns.org':3001
- DNS ASK ey##.#uckdns.org
- ClassName: 'STATIC' WindowName: 'q3TDgcZ4p2up0Z77amQP 00000B70'
- '%TEMP%\MMSWT.exe'
- '<Full path to file>'
- '<SYSTEM32>\schtasks.exe' /Create /TN "GCKNLYBM\GCKNLYBM" /XML "%APPDATA%\GCKNLYBM\aFFFFF.xml"