Technical Information
- [<HKLM>\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] '12' = 'd:\qq\lasaa.exe'
- lasaa.exe
- D:\qq\lasaa.exe
- D:\qq\autoip.dll
- D:\qq\md5.png
- '10#.#0.161.15':8000
- '10#.#0.161.15':8000
- ClassName: 'CTXOPConntion_Class' WindowName: ''
- 'D:\qq\lasaa.exe'