Technical Information
- [<HKCU>\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] 'Chrome' = '%TEMP%\Chrome\chrome.exe'
- %APPDATA%\opera software\opera stable\login data
- %LOCALAPPDATA%\google\chrome\user data\default\login data
- %APPDATA%\mozilla\firefox\profiles.ini
- %TEMP%\chrome\chrome.exe
- %TEMP%\chrome\selfdelete.txt
- %TEMP%\chrome\selfdelete.txt
- 'to###.feron.it':80
- 'to###.feron.it':443
- 'to###.feron.it':443
- DNS ASK to###.feron.it
- '%TEMP%\chrome\chrome.exe'