Technical Information
- [<HKLM>\SYSTEM\CurrentControlSet\Services\KingDriver] 'ImagePath' = '%HOMEPATH%\Documents\KingDriver.sys'
- [<HKLM>\System\CurrentControlSet\Services\hyf55] 'ImagePath' = '%TEMP%\ml7m4JW.sys'
- %WINDIR%\mgzf.exe
- <Current directory>\µìГВёГГЈГ°è»¾ô\¾çðé±¼éГ¶².ink
- %HOMEPATH%\documents\kingdriver.sys
- %TEMP%\ml7m4jw.sys
- %WINDIR%\temp\udd1abe.tmp
- <Current directory>\µìГВёГГЈГ°è»¾ô\¾çðé±¼éГ¶².lnk
- %TEMP%\ml7m4jw.sys
- %TEMP%\ml7m4jw.sys
- %WINDIR%\temp\udd1abe.tmp
- from <Current directory>\µìГВёГГЈГ°è»¾ô\¾çðé±¼éГ¶².ink to <Current directory>\µìГВёГГЈГ°è»¾ô\¾çðé±¼éГ¶².lnk
- from <Full path to file> to %TEMP%\1054250\....\temporaryfile
- http://39.##4.124.136/mgzf.exe