Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'System Relog' = '\<File name>.exe'
- %HOMEPATH%\Start Menu\Programs\Startup\System Relog.url
- <SYSTEM32>\attrib.exe
- from <Full path to file> to C:\<File name>.exe
- '91.##3.81.180':80
- http://91.##3.81.180/api.php
- '<SYSTEM32>\attrib.exe'