Technical Information
- <SYSTEM32>\tasks\nvngxupdatecheckdaily_{3d45a02f-a02f-a02f-a02f-3d45a02fa02f}
- %WINDIR%\explorer.exe
- %TEMP%\210a.tmp
- %APPDATA%\dawetwc
- %APPDATA%\dawetwc
- %TEMP%\210a.tmp
- %TEMP%\210a.tmp
- 'dk#####i92iejdnfsa.info':443
- 'dk#####i92iejdnfsa.info':80
- http://dk#####i92iejdnfsa.info/
- 'dk#####i92iejdnfsa.info':443
- DNS ASK ch#####iwkokskkall.info
- DNS ASK dk#####jdiei28uj2.info
- DNS ASK dk#####i92iejdnfsa.info
- '%APPDATA%\dawetwc'
- '%APPDATA%\dawetwc' ' (with hidden window)
- '<SYSTEM32>\taskeng.exe' {A19E3EEE-227D-4E12-B5FC-2FCD6B9D172F} S-1-5-21-2594934582-3011428313-3661137593-1000:nbgawshmzwi\user:Interactive:[1]