Technical Information
- [<HKLM>\System\CurrentControlSet\Services\asdasdasdsd] 'Start' = '00000002'
- [<HKLM>\System\CurrentControlSet\Services\asdasdasdsd] 'ImagePath' = '<SYSTEM32>\uyaoye.exe'
- 'asdasdasdsd' <SYSTEM32>\uyaoye.exe
- %WINDIR%\syswow64\uyaoye.exe
- 'localhost':81
- '%WINDIR%\syswow64\uyaoye.exe'