Техническая информация
- '%TEMP%\cecabfegib.exe' 4-4-3-9-0-7-5-6-3-1-7 K0xGOz0pGylQVDtMRUE0MBkqSEJTUEtOSEBENisaLENCT1BGOz0pGylASD05LB0mUEtKPlJCTVtFQTQwGSpNQlFPQU5cTFJFOGJxc2k2KyxqZWtxKHFnXildbWctXVxuXi1iamJsFy88R0NASkJAOR0mRCo4Jy4fKEAuOiQxGSo+MDwmLRwsOzQ2KCsdLj0xOSooIChLTExDTj9QXEdSQlE7QFg2HCtNSU89UD1RXj5RSD40IChLTExDTj9QXEVBRkA3HS4+VEFcTFJFOBosRFFBW0BEREVESEI8GStETEpUWD1MTFZMQU46JyAoT0I+TURVS1JWVUtHNx0uT0k5LxcvPU4rOh8oTlFLS0lGQFlUREU/S0o8SUY8QUJUS0g5HSZJTFpMUk1NRUlCNHRrcF8dLktBUFJJTkJJQVxUTEFOXDtBUk43Lx8oREVBPFg2LBosSExbQFZFQUZEPVxERz9OVkdUPj83Y2Blb2EdJkRIUkhJTjpAW0ZHPSorMSswMDQqLycwJywzNh8oUEVKPD0qLywwLy01LTErICg/SVRNRUs9QVZUQkg/OjEoMCsvJzEuJSsuOSsxNjErKjpI
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423061163.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423061163.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423061163.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsq2.tmp\fzy.dll
- %TEMP%\rc31.cecabfegib
- %TEMP%\cecabfegib.zip
- %TEMP%\rc31.exe
- %TEMP%\nsq2.tmp\nsisunz.dll
- %TEMP%\81423061163.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\rc31.exe в %TEMP%\cecabfegib.exe