Technical Information
- '%APPDATA%\jell.exe'
- %WINDIR%\syswow64\svchost.exe
- jell.exe
- %APPDATA%\jell.exe
- %APPDATA%\csrss_cd60d637.exe
- %APPDATA%\wsrv_cd60d637.dll
- %APPDATA%\csrss_cd60d637.exe
- %APPDATA%\wsrv_cd60d637.dll
- http://ho####outdoors.com/inst1.exe
- http://ho####outdoors.com/ss2.bin
- DNS ASK ho####outdoors.com
- DNS ASK ba#####rporthotel.com
- '%WINDIR%\syswow64\svchost.exe' netsvcs