Техническая информация
- '%TEMP%\bccicabeddjj.exe' 5-6-8-5-8-1-3-6-7-3-5 KkpBPzUwMCowMBsqTU09SEhBNykdKkk/TFJHUUhDPTorGyk8REtTRj42LjMwMCsbJ0JGPjYtGypKSko8VEBOWEY/OC0rLS0fLE0+T1FATFdQSks6Ym1xazUpJ25dcXMobWVgKFtoayVjXm5aK2RpYGcbJ0JJQzxIRD83QV0pL0JbUEBuYRonPyk8S09GP0BNGic/KjwqKxksPy43JSwYLkEuNiosGyk8MDUsLhooTU1KPk0+TF5NTEJTPD5TNRsnT09JPVI+T1k9UERAOhooTU1KPk0+TF5LO0ZCOBspPVM9XlJMRTobKj9QQFdCSj5FRklANxgqQE5QTlg/TUpRS0BKPC8aKFFDPEhDVEdUXE9LSTgbKUxERUQ6Ky0uNDIzKTQpNx0pT0o4LRonP0swOhooT1BJTkFIPV5UP0VASkg/QUg5RkJPS0k4GylBTldRUkhNRkhAN2xtbWQdKUtCT1BMRkRGRlxPTEJNWj45VEs8LxooRUQ/P1A4KR8sQ0xcP1RIOUhBQlw/R0BNVEpMQDw8Y1tlcGAbKTxKT01JSTpBWk9DRUA1MC8pKzUqLSopLyI1Ny0xNy4zJEhIGC5BSVBLR0o7PFpBTzoxLyswKSswKyYxLQ==
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420550349.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420550349.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420550349.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsz2.tmp\iix.dll
- %TEMP%\insHv18.bccicabeddjj
- %TEMP%\bccicabeddjj.zip
- %TEMP%\insHv18.exe
- %TEMP%\nsz2.tmp\nsisunz.dll
- %TEMP%\81420550349.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bccicabeddjj.zip
- %TEMP%\insHv18.bccicabeddjj
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv18.exe в %TEMP%\bccicabeddjj.exe