Техническая информация
- '%TEMP%\bbfcabfebbbg.exe' 2-6-9-5-2-9-1-0-2-2-0 LUpAPzsnHy9RU0JOQzs4LhcuTkNSV01MQkRCNC8gLUJJUU5APzsnHy9BR0Q7KhcqTklORFNBVF1DOzguFy5TQ1BWQ0xWUFBDPGhycnA4KSZuY2l1LnJmZStbZ2srW2B0XyxpbGBmGy06S0lBSUlCNxcqQig8LS8eL0IsNCgvFy5EMTstLxomPzI0LDEeLUQzNyQsHiZPUk1CVUFOVktQQFVBQVc9HilHTU07VENSXUVTRjg4HiZPUk1CVUFOVkk/REQ9Hi1FVj9WUFBDPCAtQ1hDWTpIQkNITkM7IC1CRk5SVkFSTVVTQ0w0LR4mU0g/TEtXSUxaU0lLPR4tVks3KRstO1IxOx4vUE9FT0dERF9VQ0xBSURAR0RAR0NTUko3FypHSl5SU0xUR0c8OHJpdGUeLVJDTkxNTEBNR11TU0NMVj8/UFI9MB4vRkM7QFY0MCAtR1NdPlBJP0RIQ11DTkFMUEtSPEM9ZF9scV8XKkJGVk5KTUFCWUBLOy01Li8uMiwwJS0zJx8vUkdNQzcoLzAoMTkwLjQuGiY/TU5NTE0/RF1OQEhDNDAvLzMvMCooMCgqOTIuODQuJDhI
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423244169.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423244169.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423244169.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsn2.tmp\raw.dll
- %TEMP%\insHv26.bbfcabfebbbg
- %TEMP%\bbfcabfebbbg.zip
- %TEMP%\insHv26.exe
- %TEMP%\nsn2.tmp\nsisunz.dll
- %TEMP%\81423244169.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv26.exe в %TEMP%\bbfcabfebbbg.exe