Техническая информация
- '%TEMP%\bcjcabfdibce.exe' 3-2-9-5-3-9-0-3-9-2-6 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81428459365.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81428459365.txt bios get serialnumber
- %TEMP%\tmp5.tmp
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\81428459365.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp4.tmp
- %TEMP%\bcjcabfdibce.zip
- %TEMP%\insHv23.bcjcabfdibce
- %TEMP%\tmp3.tmp
- %TEMP%\insHv23.exe
- %TEMP%\81428459365.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv23.exe в %TEMP%\bcjcabfdibce.exe