Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Task_Monitor' = 'C:\Util\Task_Monitor.exe'
- %TEMP%\aut1.tmp
- <SYSTEM32>\blat.dll
- C:\tmp.txt
- %TEMP%\aut1.tmp
- 'sm##.#erra.com.br':587
- DNS ASK sm##.#erra.com.br
- '<SYSTEM32>\cmd.exe' /C arp -a > C:\Util\Tempdir\Roteador.Mac