Техническая информация
- '%TEMP%\chcabfdjbij.exe' 1-7-8-1-4-2-8-1-2-2-2 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427354462.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427354462.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81427354462.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsz2.tmp\fat.dll
- %TEMP%\rc24.chcabfdjbij
- %TEMP%\chcabfdjbij.zip
- %TEMP%\rc24.exe
- %TEMP%\nsz2.tmp\nsisunz.dll
- %TEMP%\81427354462.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\rc24.exe в %TEMP%\chcabfdjbij.exe