Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 7ec2826addaad678
- %WINDIR%\explorer.exe
- %APPDATA%\bfsurcs
- %APPDATA%\bfsurcs
- DNS ASK oj##sei.com
- DNS ASK ka##ay.biz
- DNS ASK gi##in.org
- DNS ASK hi###aih.com
- DNS ASK sa###atoma.com
- DNS ASK ky###bowls.com
- DNS ASK ha###ushi.com
- DNS ASK yu###rice.com
- '%APPDATA%\bfsurcs'
- '%APPDATA%\bfsurcs' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {2C7F80A9-B90C-4E65-950E-88C9F502005B} S-1-5-21-1960123792-2022915161-3775307078-1001:gszfdtyu\user:Interactive:[1]