Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '' = '%APPDATA%\iexplorer.exe'
- %TEMP%\29532.exe
- %TEMP%\48671.jpg
- %TEMP%\aobjhl - 6-14-2020-3.42.11-pm.gif
- %TEMP%\20799.jpg
- %APPDATA%\iexplorer.exe
- from %TEMP%\29532.exe to %TEMP%\tm54.tmp
- 'sm##.gmail.com':587
- DNS ASK sm##.gmail.com
- '%TEMP%\29532.exe'
- '%APPDATA%\iexplorer.exe'