Техническая информация
- '%TEMP%\bbfcabfebcbc.exe' 4-1-9-1-1-5-2-7-6-1-6 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423253526.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423253526.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423253526.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nss2.tmp\raw.dll
- %TEMP%\insHv26.bbfcabfebcbc
- %TEMP%\bbfcabfebcbc.zip
- %TEMP%\insHv26.exe
- %TEMP%\nss2.tmp\nsisunz.dll
- %TEMP%\81423253526.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv26.exe в %TEMP%\bbfcabfebcbc.exe