Technical Information
- %HOMEPATH%\Start Menu\Programs\Startup\CgsbUNDpbHgdXrP.exe
- %HOMEPATH%\Start Menu\Programs\Startup\CgsbUNDpbHgdXrP.exe
- 'wp#d':80
- '84.##4.18.164':80
- http://11#.#11.111.1/wpad.dat via wp#d
- http://84.##4.18.164/updater.exe
- DNS ASK wp#d
- '<Full path to file>'