Техническая информация
- '%TEMP%\bbfcabfecbhe.exe' 1-5-8-7-1-4-4-9-6-4-7 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423235289.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423235289.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423235289.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsj2.tmp\raw.dll
- %TEMP%\insHv27.bbfcabfecbhe
- %TEMP%\bbfcabfecbhe.zip
- %TEMP%\insHv27.exe
- %TEMP%\nsj2.tmp\nsisunz.dll
- %TEMP%\81423235289.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv27.exe в %TEMP%\bbfcabfecbhe.exe