Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Security Health' = '"C:\Users\Public\Documents\Windino.exe"'
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] 'Security Health' = '"C:\Users\Public\Documents\Windino.exe"'
- [<HKLM>\System\CurrentControlSet\Services\WinRing0_1_2_0] 'ImagePath' = 'C:\Users\Public\Documents\WinRing0x64.sys'
- C:\users\public\documents\windino.exe
- C:\users\public\documents\fg4f65er4dsdvc.dll
- C:\users\public\documents\windino.exe
- C:\users\public\documents\fg4f65er4dsdvc.dll
- C:\users\public\documents\windino.exe
- 'za######sfd.bounceme.net':9582
- DNS ASK za######sfd.bounceme.net
- 'C:\users\public\documents\windino.exe'