Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'ϵͳÊäÈë·¨' = '%ProgramFiles%\Msna\vsc.exe'
- %WINDIR%\syswow64\cmdl32.exe
- %ProgramFiles%\msna\vsc.exe
- %ProgramFiles%\msna\dlcore.dll
- C:\plk
- %APPDATA%\tencent\logs\vsc.tlg
- %ProgramFiles%\msna\vsc.exe
- %ProgramFiles%\msna\dlcore.dll
- 'up####_data.qq.com':443
- DNS ASK up####_data.qq.com
- ClassName: 'LogView_qqpcmgr' WindowName: ''
- ClassName: 'IEFrame' WindowName: ''
- ClassName: 'WorkerW' WindowName: ''
- ClassName: 'ReBarWindow32' WindowName: ''
- ClassName: 'Address Band Root' WindowName: ''
- ClassName: 'Edit' WindowName: ''
- '%ProgramFiles%\msna\vsc.exe'
- '%WINDIR%\syswow64\cmdl32.exe' ' (with hidden window)
- '%WINDIR%\syswow64\cmdl32.exe'