Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] 'ntvdgtx' = '{537be37e-dbf3-2048-ec04-dbf36bf60803}'
- Handler for all processes: <SYSTEM32>\vxxljydf.dat
- <SYSTEM32>\vxxljydf.dat
- <SYSTEM32>\agiqtgk.dll
- <SYSTEM32>\msucfsw.dll
- from <Full path to file> to %TEMP%\95.tmp
- '<SYSTEM32>\rundll32.exe' "<SYSTEM32>\vxxljydf.dat" to