Техническая информация
- '%TEMP%\bhcabfcecda.exe' 2-7-7-6-9-6-1-8-8-6-4 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420674008.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420674008.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420674008.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsc2.tmp\jjff.dll
- %TEMP%\insHv10.bhcabfcecda
- %TEMP%\bhcabfcecda.zip
- %TEMP%\insHv10.exe
- %TEMP%\nsc2.tmp\nsisunz.dll
- %TEMP%\81420674008.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bhcabfcecda.zip
- %TEMP%\insHv10.bhcabfcecda
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv10.exe в %TEMP%\bhcabfcecda.exe