Technical Information
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'Load' = '%HOMEPATH%\scvhots.exe'
- %WINDIR%\Microsoft.NET\Framework\v2.0.50727\csc.exe
- %TEMP%\3c761cfa-9e2b-4762-a9fb-f5e3ad23fb68\AgileDotNetRT.dll
- %HOMEPATH%\scvhots.exe
- %HOMEPATH%\scvhots.exe
- 'po##.#upportxmr.com':5555
- DNS ASK po##.#upportxmr.com
- '%HOMEPATH%\scvhots.exe'
- '%WINDIR%\Microsoft.NET\Framework\v2.0.50727\csc.exe' -a cryptonight -o stratum+tcp://pool.supportxmr.com:5555 -u 47r5J84nUSfPYrkZC5YYKY93zXv6BrsTzVnRKXX17JcDaudvHdptqgW5juaPPdef54YP9W4LJjjk5HdxZVWSNJ51Puyornt -p vps75 --max-cpu-usage=75 --av=0...