Technical Information
- <SYSTEM32>\tasks\firefox default browser agent 7fac25d0bd918da2
- %WINDIR%\explorer.exe
- %APPDATA%\desbsgg
- %APPDATA%\desbsgg
- 'ca####andhalls.com':443
- 'be####rldhools.com':443
- 'ca####andhalls.com':443
- DNS ASK ca####andhalls.com
- DNS ASK be####rldhools.com
- '%APPDATA%\desbsgg'
- '<SYSTEM32>\taskeng.exe' {BC6BD615-8CB2-452C-A8F7-319ACC0BAAD8} S-1-5-21-3691498038-2086406363-2140527554-1000:nkakquca\user:Interactive:[1]
- '%APPDATA%\desbsgg' ' (with hidden window)