Техническая информация
- '%TEMP%\bccjcabeddde.exe' 5-6-0-3-1-9-8-6-8-5-4 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420449496.txt bios get serialnumber
- %TEMP%\insHv18.exe
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\nss2.tmp\nsisunz.dll
- %TEMP%\insHv18.bccjcabeddde
- %TEMP%\nss2.tmp\iix.dll
- %TEMP%\bccjcabeddde.zip
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\insHv18.bccjcabeddde
- %TEMP%\bccjcabeddde.zip
- %TEMP%\insHv18.exe в %TEMP%\bccjcabeddde.exe