Technical Information
- [<HKLM>\SYSTEM\ControlSet001\services\hscoqi] 'ImagePath' = '<PATH_SAMPLE>.sys'
- [<HKLM>\SYSTEM\CurrentControlSet\Services\daycwpgsaz] 'ImagePath' = '<DRIVERS>\daycwpgsaz.sys'
- [<HKLM>\SYSTEM\CurrentControlSet\Services\daycwpgsaz] 'Start' = '00000000'
- <DRIVERS>\daycwpgsaz.sys
- DNS ASK ds##as.xyz