Техническая информация
- '%TEMP%\bccdcabeddbcc.exe' 3-1-4-7-8-6-6-0-9-9-0 LE9FPTUqGi9KTEJNSEA2KBopTjxLV0xRR0I8NyogJjtJUFNFPTUqGi86QEQ6LxwoSExJREw6VFxIQDYoGilTPElWQlFbTkpGN2hra3A3LitsXWxwLmtfZSpgbGklXlt0WCVpa2VrGSc9Rkk6QklBPBwoPCs3LSgXL0ExOSYpGilEKjQtLh8rPSw3JzEXJkQyPCkqGClKUkY7VUBTW0lKQ1BBOlA9HS5MS0c+T0NLVkVSSz02GClKUkY7VUBTW0c5Rz89FyZFVURbTkpGNyAmPFhCXj9GPEZDTjw0ICxHS0xMWTxSRk5TQlE5KxgpTkg4RUtWTlFYTUxGPRcmVEZMQTYpLis5KicwMjEzGSdQRz0pFy9BUi02GClMVUVLSUpEW1A9Rj1PRDxJSkBDPk1MRj0XJklQXk5ORk5DTTw0dG90YRknTD9UTElORk1DWE1NP1JWO0FWUjkrGClCSTs8WDowHChBTVlEUEVBSkg/WD1IPVJQR1RCQzlfWWZtZRcmRExWSkVHOz5fS0BNQjwtKycsLS8pJzExKS4zKDI0NC4hQUofKz1HUUhMRjhEXEhMNi4wKDIrMC41MiorKjM=
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420478054.txt bios get serialnumber
- %TEMP%\insHv18.exe
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\nsk2.tmp\nsisunz.dll
- %TEMP%\insHv18.bccdcabeddbcc
- %TEMP%\nsk2.tmp\vvq.dll
- %TEMP%\bccdcabeddbcc.zip
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\insHv18.bccdcabeddbcc
- %TEMP%\bccdcabeddbcc.zip
- %TEMP%\insHv18.exe в %TEMP%\bccdcabeddbcc.exe