| description | ioc | process |
|---|
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /C" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /i" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /F" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /f" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /U" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /t" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /A" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /z" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /G" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /w" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /a" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /q" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /u" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /J" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /d" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /g" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /b" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /r" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /v" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /K" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /V" | miayid.exe |
| Key created | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\Software\Microsoft\Windows\CurrentVersion\Run\ | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /L" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /x" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /M" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /R" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /l" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /c" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /e" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /k" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /h" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /Q" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /n" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /a" | c49a8a525df6a94c46f3b164edf93df432d786f82acc7801bbb5cbf51f0f3fca.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /o" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /p" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /y" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /Z" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /W" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /T" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /B" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /H" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /j" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /N" | miayid.exe |
| Key created | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\Software\Microsoft\Windows\CurrentVersion\Run\ | c49a8a525df6a94c46f3b164edf93df432d786f82acc7801bbb5cbf51f0f3fca.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /s" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /P" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /E" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /S" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /X" | miayid.exe |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4246620582-653642754-1174164128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\miayid = "C:\\Users\\Admin\\miayid.exe /Y" | miayid.exe |
