Техническая информация
- '%TEMP%\bbecabfecceg.exe' 7-2-1-0-9-2-3-3-4-8-7 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423253889.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423253889.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423253889.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsp2.tmp\raw.dll
- %TEMP%\insHv27.bbecabfecceg
- %TEMP%\bbecabfecceg.zip
- %TEMP%\insHv27.exe
- %TEMP%\nsp2.tmp\nsisunz.dll
- %TEMP%\81423253889.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv27.exe в %TEMP%\bbecabfecceg.exe