Technical Information
- [<HKLM>\SOFTWARE\Microsoft\Active Setup\Installed Components\{E8797310-4A3B-2F94-3116-42A845EC0BC6}] 'StubPath' = '<SYSTEM32>:tcplib.exe'
- %WINDIR%\Explorer.EXE
- <SYSTEM32>:tcplib.exe
- 'www.lo###lived.com':443
- DNS ASK www.lo###lived.com
- '<Private IP address>':1035