Technical Information
- <SYSTEM32>\tasks\firefox default browser agent a8918035a0ec120e
- %WINDIR%\syswow64\explorer.exe
- %WINDIR%\explorer.exe
- firefox.exe
- firefox.exe process, nss3.dll module
- iexplore.exe process, wininet.dll module
- %APPDATA%\vjgrwee
- %APPDATA%\rijbiad
- %TEMP%\bcf4.exe
- %TEMP%\dd51.exe
- %TEMP%\f0d2.exe
- %APPDATA%\vjgrwee
- %APPDATA%\rijbiad
- 'av####osecure.com':80
- 'ru######alawchambers.org':443
- 'ma####-formula.com':443
- 'bi###cket.org':443
- http://av####osecure.com/
- 'ru######alawchambers.org':443
- 'ma####-formula.com':443
- 'bi###cket.org':443
- DNS ASK av####osecure.com
- DNS ASK ru######alawchambers.org
- DNS ASK ma####-formula.com
- DNS ASK microsoft.com
- DNS ASK bi###cket.org
- '%TEMP%\bcf4.exe'
- '%TEMP%\dd51.exe'
- '%TEMP%\f0d2.exe'
- '%WINDIR%\syswow64\explorer.exe'
- '%WINDIR%\explorer.exe'