Technical Information
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '437368456736465' = '%PROGRAMDATA%\LOL DIRECTORY\LOL.EXE'
- %WINDIR%\explorer.exe
- %PROGRAMDATA%\lol directory\lol.exe
- %TEMP%\{761a6eb5-6314-4cb4-819f-d46773907eaf}
- %TEMP%\{761a6eb5-6314-4cb4-819f-d46773907eaf}
- 'localhost':5555
- '<SYSTEM32>\svchost.exe'
- '%WINDIR%\explorer.exe'