Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'b594996374aa09b5869f6b97a8c7d974' = '%TEMP%\Microsoft\TP Loader.exe'
- %HOMEPATH%\Start Menu\Programs\Startup\TP Loader.exe
- %TEMP%\Microsoft\TP Loader.exe
- %TEMP%\Microsoft\TP Loader.exe
- %HOMEPATH%\Start Menu\Programs\Startup\TP Loader.exe
- 'localhost':1150