Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'INCO' = '%HOMEPATH%\Unceasingk\Natatio1.exe'
- ieinstal.exe
- %HOMEPATH%\unceasingk\natatio1.exe
- http://drive.google.com/uc?ex##################################################
- DNS ASK drive.google.com
- DNS ASK do#########ocs.googleusercontent.com
- DNS ASK ju###.#00chickens.me
- '%ProgramFiles(x86)%\internet explorer\ieinstal.exe'