Technical Information
- %LOCALAPPDATA%\google\chrome\user data\default\login data
- %LOCALAPPDATA%\google\chrome\user data\default\cookies
- %LOCALAPPDATA%\google\chrome\user data\default\web data
- %APPDATA%\opera software\opera stable\login data
- %APPDATA%\744893.exe
- 'bu#####sservicess.xyz':80
- 'ge###etter.club':443
- 'ip###ger.org':443
- http://bu#####sservicess.xyz/?u=#####
- 'ge###etter.club':443
- 'ip###ger.org':443
- DNS ASK bu#####sservicess.xyz
- DNS ASK ge###etter.club
- DNS ASK ip###ger.org
- '%APPDATA%\744893.exe'
- '%APPDATA%\744893.exe' ' (with hidden window)