Техническая информация
- '%TEMP%\dfcabficbbb.exe' 6-4-5-8-8-6-3-0-0-6-9 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427239923.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427239923.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81427239923.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsc2.tmp\bnoqs.dll
- %TEMP%\ic67.dfcabficbbb
- %TEMP%\dfcabficbbb.zip
- %TEMP%\ic67.exe
- %TEMP%\nsc2.tmp\nsisunz.dll
- %TEMP%\81427239923.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\ic67.exe в %TEMP%\dfcabficbbb.exe