Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'fsecDrill' = '%TEMP%\fsi\1573.exe'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3] '1806' = '00000000'
- %TEMP%\fsi\config.ini
- %TEMP%\fsi\1573.exe
- %TEMP%\fsi\imagefile.png
- %TEMP%\fsi\imagefile.png.enc
- '21#.#27.188.240':8083
- '17#.#8.196.119':8083
- '%TEMP%\fsi\1573.exe'