Техническая информация
- '%TEMP%\bbfcabfcecca.exe' 4-2-2-1-2-2-5-0-4-9-7 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423254245.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423254245.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423254245.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsm2.tmp\raw.dll
- %TEMP%\insHv10.bbfcabfcecca
- %TEMP%\bbfcabfcecca.zip
- %TEMP%\insHv10.exe
- %TEMP%\nsm2.tmp\nsisunz.dll
- %TEMP%\81423254245.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv10.exe в %TEMP%\bbfcabfcecca.exe