Техническая информация
- '%TEMP%\bccccabeecfh.exe' 2-0-1-7-5-1-4-5-1-0-4 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422175206.txt bios get version
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422175206.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81422175206.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsd2.tmp\ooi.dll
- %TEMP%\insHv27.bccccabeecfh
- %TEMP%\bccccabeecfh.zip
- %TEMP%\insHv27.exe
- %TEMP%\nsd2.tmp\nsisunz.dll
- %TEMP%\tmp4.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\81422175206.txt
- %TEMP%\tmp5.tmp
- %TEMP%\bccccabeecfh.zip
- %TEMP%\insHv27.bccccabeecfh
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\tmp3.tmp
- %TEMP%\insHv27.exe в %TEMP%\bccccabeecfh.exe