Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'qBLjRKfi' = '%APPDATA%\Seel\aNcAKA.exe'
- %TEMP%\s2d9g.exe
- <Current directory>\.<File name>.exe
- %APPDATA%\seel\ancaka.exe
- %APPDATA%\seel\mbtsfsmh.exe
- %APPDATA%\seel\ie.dll
- %APPDATA%\seel\19kkhvju
- <Current directory>\.<File name>.exe
- '%TEMP%\s2d9g.exe'
- '<Current directory>\.<File name>.exe'
- '%APPDATA%\seel\ancaka.exe'