Техническая информация
- '%TEMP%\bccccabeeafh.exe' 6-9-3-5-3-6-7-9-9-3-2 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422168009.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422168009.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81422168009.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsa2.tmp\ooi.dll
- %TEMP%\insHv25.bccccabeeafh
- %TEMP%\bccccabeeafh.zip
- %TEMP%\insHv25.exe
- %TEMP%\nsa2.tmp\nsisunz.dll
- %TEMP%\81422168009.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bccccabeeafh.zip
- %TEMP%\insHv25.bccccabeeafh
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv25.exe в %TEMP%\bccccabeeafh.exe