Техническая информация
- '%TEMP%\bhcabfcecda.exe' 1-5-0-4-2-0-3-4-0-4-5 LktJQDswHStTUT1PREQ5LiAsSkVQUk5NS0VCPS0cL0BEUk9JQDswHStDRT88KyArTlJMQFU/T15ERDkuICxPRU5RRE1fUVBMOmR0cGs5Ki9vY3JzKnRkYCxccGwrZF5wYSpkbWFvHC1DSUVDR0RDOCArQjE6KTEcKkMtPSkvICxAMzkoMBsvQDI9Ki0gKz80OC0tHi9NTk9AUEJPX0xQSVM9Q1U4HypQTk1EUj9UW0BUR0E5Hi9NTk9AUEJPX0o/TUI5ICtAV0BfUVBMOhwvQVNEWkNJQkxGSkU5Gy5DT09SXz9OT1NORE09LB4vUURBSkZYSlVbU1JJOSArUUw4MhwtRFAtPRwqUVBOUEdNQltXQUdCSk1BR00+Q0VRTUs4ICtHU1xOVUpPSEhFOXJycmEgK01ET1VOTElLQ19RTkRNX0A/WVA5MhwqR0REQVY9LhwvRU5eP1lKP01GP19BSUJNWUxSRUE5Zl1ncmAgK0JPVEpMSzxDWklMOzgvKjEyMC0sMzMsMTQ0ICtPSEhFOS80Lyw1NTE1MTccLURMU05ISkA/X1BHTUI5MSsyLi0wLTMqLzYxLTUvMio9Sw==
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420683909.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81420683909.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81420683909.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsx2.tmp\jjff.dll
- %TEMP%\insHv10.bhcabfcecda
- %TEMP%\bhcabfcecda.zip
- %TEMP%\insHv10.exe
- %TEMP%\nsx2.tmp\nsisunz.dll
- %TEMP%\81420683909.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bhcabfcecda.zip
- %TEMP%\insHv10.bhcabfcecda
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv10.exe в %TEMP%\bhcabfcecda.exe