Техническая информация
- '%TEMP%\bbecabfecbh.exe' 8-8-9-5-8-4-1-6-1-3-1 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423234388.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423234388.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423234388.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsl2.tmp\raw.dll
- %TEMP%\insHv27.bbecabfecbh
- %TEMP%\bbecabfecbh.zip
- %TEMP%\insHv27.exe
- %TEMP%\nsl2.tmp\nsisunz.dll
- %TEMP%\81423234388.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\tmp5.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\insHv27.exe в %TEMP%\bbecabfecbh.exe