Technical Information
- %WINDIR%\tasks\gkmhcub.job
- <SYSTEM32>\tasks\gkmhcub
- %PROGRAMDATA%\bipvf\gkmhcub.exe
- 'mx###gs19.xyz':4044
- DNS ASK mx###gs19.xyz
- '%PROGRAMDATA%\bipvf\gkmhcub.exe' start
- '%PROGRAMDATA%\bipvf\gkmhcub.exe' start' (with hidden window)