Technical Information
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] 'Microsofts sever' = '%WINDIR%\Microsoft severss.exe'
- C:\input.txt
- %WINDIR%\microsoft severss.exe
- C:\input.txt
- C:\input.txt
- '10#.#2.163.48':9210
- '%WINDIR%\microsoft severss.exe'