Техническая информация
- '%TEMP%\dcfcabfhfcbh.exe' 3-5-7-0-2-4-2-9-7-4-1 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427297645.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427297645.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81427297645.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsk2.tmp\eitfk.dll
- %TEMP%\jj49.dcfcabfhfcbh
- %TEMP%\dcfcabfhfcbh.zip
- %TEMP%\jj49.exe
- %TEMP%\nsk2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- %TEMP%\81427297645.txt
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\jj49.exe в %TEMP%\dcfcabfhfcbh.exe