Техническая информация
- '%TEMP%\bgcabfcebgb.exe' 9-0-4-0-9-3-1-8-5-5-2 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81421639642.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81421639642.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81421639642.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nse2.tmp\jjff.dll
- %TEMP%\insHv10.bgcabfcebgb
- %TEMP%\bgcabfcebgb.zip
- %TEMP%\insHv10.exe
- %TEMP%\nse2.tmp\nsisunz.dll
- %TEMP%\81421639642.txt
- %TEMP%\tmp5.tmp
- <SYSTEM32>\PerfStringBackup.TMP
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\bgcabfcebgb.zip
- %TEMP%\insHv10.bgcabfcebgb
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\insHv10.exe в %TEMP%\bgcabfcebgb.exe