Техническая информация
- '%TEMP%\cbecabficdj.exe' 3-2-1-8-9-6-2-1-5-8-7 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423940164.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423940164.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423940164.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsp2.tmp\dmc.dll
- %TEMP%\rc67.cbecabficdj
- %TEMP%\cbecabficdj.zip
- %TEMP%\rc67.exe
- %TEMP%\nsp2.tmp\nsisunz.dll
- %TEMP%\81423940164.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\rc67.exe в %TEMP%\cbecabficdj.exe