Техническая информация
- '%TEMP%\bcaccabfbbbc.exe' 2-9-0-5-7-5-9-2-8-1-5 LUdJPzYrFy1LVD1OQEQ4KRsmTD1TUk1JS0Q9OCceJ0NEUUtJPzYrFy07SD87JyAqSU1GQk1CT11ARDgpGyZRPVFRQ0lfUEtHNGZsc2s4Ji9uXm1tLGxnYCtYcGsmX1hyWS1kbF1vGyg+Q0c7SkRCNCAqPSw0KykfKkIpPSgqGyZCKzwoLxcvPy04JC8YLj8zNC0sGSpHUEdDUEFLX0tLRE0/O1g4HiZQTUg/TEFMXkBTQ0E4GSpHUEdDUEFLX0k6SDw7GC5AVjxfUEtHNB4nRFNDVkNIPUdATD08Gy0/T05NWjlQR1ZOQ0k9LRkqS0Y5TUZXRlVaTk1DOxguUUs0MhsoP0ovNR8qUExOT0JIPF1PREdBRk1AQkg4RT1UTUo0ICpCTlZQTU1PR0RFOG1tbGMYLk1DS1VNR0RFRVdUTkNJXz86VEo7Kh8qRkBEQFE4KB4nSE5dO1lJOkhAQVdESUFJWUtNQDs7XmBncVwgKj1KTkxETjxCVklLNiwpNSYvKS4lMRsoT0BLPTwsMikzMi0yKS4wHypCRldJRUo4QldTREs8PSwrKicwJzErLywqLCw1KS4yLzM=
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81424114948.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81424114948.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81424114948.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nse2.tmp\dmc.dll
- %TEMP%\rc3.bcaccabfbbbc
- %TEMP%\bcaccabfbbbc.zip
- %TEMP%\rc3.exe
- %TEMP%\nse2.tmp\nsisunz.dll
- %TEMP%\81424114948.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\rc3.exe в %TEMP%\bcaccabfbbbc.exe