Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '0dd2a5168d943e84efe5f111fe67a41f' = '"%APPDATA%\SecurityHealthSystray.exe" ..'
- [<HKLM>\Software\Microsoft\Windows\CurrentVersion\Run] '0dd2a5168d943e84efe5f111fe67a41f' = '"%APPDATA%\SecurityHealthSystray.exe" ..'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%APPDATA%\SecurityHealthSystray.exe" "SecurityHealthSystray.exe" ENABLE
- %APPDATA%\securityhealthsystray.exe
- '52####7.duckdns.org':3344
- DNS ASK 52####7.duckdns.org
- '%APPDATA%\securityhealthsystray.exe'
- '<SYSTEM32>\netsh.exe' firewall add allowedprogram "%APPDATA%\SecurityHealthSystray.exe" "SecurityHealthSystray.exe" ENABLE' (with hidden window)