Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Startup' = '%APPDATA%\Microsoft\Pinger.exe'
- <Drive name for removable media>:\svcpic.jpg
- <Drive name for removable media>:\autorun.inf
- iexplore.exe
- %TEMP%\889.exe
- %APPDATA%\microsoft\pinger.exe
- %APPDATA%\microsoft\pinger.exe
- <Drive name for removable media>:\svcpic.jpg
- <Drive name for removable media>:\autorun.inf
- 'se#####os.dyndns.org':3086
- DNS ASK se#####os.dyndns.org
- '%TEMP%\889.exe'
- '%APPDATA%\microsoft\pinger.exe'
- '%TEMP%\889.exe' ' (with hidden window)
- '%APPDATA%\microsoft\pinger.exe' ' (with hidden window)