Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 15a9a6d7ba829233
- %WINDIR%\syswow64\explorer.exe
- iexplore.exe process, wininet.dll module
- firefox.exe process, nss3.dll module
- %APPDATA%\eeuacjf
- %APPDATA%\bfrjrgu
- %TEMP%\9883.exe
- %TEMP%\9e2f.exe
- %TEMP%\aea4.exe
- %APPDATA%\eeuacjf
- %APPDATA%\bfrjrgu
- 'av####osecure.com':80
- 'ke####ritier.com':443
- 'ca###redict.com':443
- http://av####osecure.com/
- 'ke####ritier.com':443
- 'ca###redict.com':443
- DNS ASK av####osecure.com
- DNS ASK ke####ritier.com
- DNS ASK microsoft.com
- DNS ASK ca###redict.com
- '%TEMP%\9883.exe'
- '%TEMP%\9e2f.exe'
- '%TEMP%\aea4.exe'
- '%WINDIR%\syswow64\explorer.exe'
- '%WINDIR%\explorer.exe'