Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'UpdateSrv' = '%TEMP%\lcassm.exe'
- '86.##6.131.177':80
- http://86.##6.131.177/SupportA91i/syshelpA774i/viewsupp.php?fo###########
- '<SYSTEM32>\cmd.exe' /c SYSTEMINFO & TASKLIST
- '<SYSTEM32>\systeminfo.exe'
- '<SYSTEM32>\tasklist.exe'