Technical Information
- [<HKCU>\Software\Microsoft\Windows NT\CurrentVersion\Windows] 'Run' = '%TEMP%\Tarantist2\pitiful.exe'
- ieinstal.exe
- %TEMP%\tarantist2\pitiful.exe
- 'pa####ntgroup.com':443
- 'microsoft.com':80
- 'pa####ntgroup.com':443
- DNS ASK pa####ntgroup.com
- DNS ASK microsoft.com
- '%ProgramFiles(x86)%\internet explorer\ieinstal.exe'