Техническая информация
- '%TEMP%\bbcabfdbjf.exe' 4-6-5-9-3-4-7-1-9-9-0 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420095378.txt bios get serialnumber
- %TEMP%\insHMroi.exe
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\nsd2.tmp\nsisunz.dll
- %TEMP%\insHMroi.bbcabfdbjf
- %TEMP%\nsd2.tmp\bvc.dll
- %TEMP%\bbcabfdbjf.zip
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\insHMroi.bbcabfdbjf
- %TEMP%\bbcabfdbjf.zip
- %TEMP%\insHMroi.exe в %TEMP%\bbcabfdbjf.exe