Техническая информация
- '%TEMP%\bdbcabfdccfd.exe' 5-2-6-7-7-4-6-6-6-4-7 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81424220965.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81424220965.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81424220965.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsd2.tmp\ob01.dll
- %TEMP%\insHv17.bdbcabfdccfd
- %TEMP%\bdbcabfdccfd.zip
- %TEMP%\insHv17.exe
- %TEMP%\nsd2.tmp\nsisunz.dll
- %TEMP%\81424220965.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\insHv17.exe в %TEMP%\bdbcabfdccfd.exe