Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'JmpyxPEOWqPO' = '%ALLUSERSPROFILE%\Application Data\JmpyxPEOWqPO.exe'
- Windows Task Manager (Taskmgr)
- %ALLUSERSPROFILE%\application data\jmpyxpeowqpo.exe
- DNS ASK fi###lert.org
- DNS ASK se####grumpy.org
- DNS ASK su##ec.in
- '%ALLUSERSPROFILE%\application data\jmpyxpeowqpo.exe'