Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'VgEDl' = 'C:\trakdkl\VgEDlm\VgEDlmBAY.vbs'
- %WINDIR%\microsoft.net\framework\v4.0.30319\regsvcs.exe
- C:\trakdkl\vgedlm\vgedlmbay.vbs
- C:\trakdkl\vgedlm\vgedl.exe
- 'sd#####fd.duckdns.org':8052
- DNS ASK sd#####fd.duckdns.org
- '%WINDIR%\microsoft.net\framework\v4.0.30319\regsvcs.exe'