Technical Information
- <SYSTEM32>\tasks\nvngxupdatecheckdaily_{d18d1ef9-1ef9-1ef9-1ef9-d18d1ef91ef9}
- %WINDIR%\syswow64\explorer.exe
- %WINDIR%\explorer.exe
- iexplore.exe
- firefox.exe process, nss3.dll module
- iexplore.exe process, wininet.dll module
- <PATH_SAMPLE>.ini
- %TEMP%\b4b8.tmp
- %APPDATA%\rgsaagu
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\metadata\f0accf77cdcbff39f6191887f6d2d357
- %WINDIR%\serviceprofiles\networkservice\appdata\locallow\microsoft\cryptneturlcache\content\f0accf77cdcbff39f6191887f6d2d357
- %APPDATA%\brgtbrh
- %APPDATA%\rgsaagu
- %APPDATA%\brgtbrh
- 'go###ron.com':443
- DNS ASK go###ron.com
- '%WINDIR%\syswow64\explorer.exe'
- '%WINDIR%\explorer.exe'