Technical Information
- [<HKLM>\System\CurrentControlSet\Services\DD81200x64] 'ImagePath' = 'C:\DD81200x64.sys'
- 'DD81200x64' C:\DD81200x64.sys
- %TEMP%\ddxoft.dll
- C:\dd81200x64.sys
- C:\dd81200x64.sys
- 'ba##u.com':80
- '12#.#7.142.8':16688
- '12#.#7.142.8':16688
- DNS ASK ba##u.com