Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'Mozilla Firefox' = '%APPDATA%\Firefox Utility.exe'
- %APPDATA%\firefox utility.exe
- 'ap####oppelsees.biz':80
- http://ap####oppelsees.biz/admin/users/login/api/api.jsp
- DNS ASK ap####oppelsees.biz
- ClassName: '' WindowName: ''
- ClassName: 'SysTreeView32' WindowName: ''
- '%APPDATA%\firefox utility.exe'