Техническая информация
- '%TEMP%\cbacabfhhii.exe' 3-9-1-8-5-2-6-3-5-3-0 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427357591.txt bios get version
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81427357591.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81427357591.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsx2.tmp\ngz.dll
- %TEMP%\rc62.cbacabfhhii
- %TEMP%\cbacabfhhii.zip
- %TEMP%\rc62.exe
- %TEMP%\nsx2.tmp\nsisunz.dll
- %TEMP%\81427357591.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\rc62.exe в %TEMP%\cbacabfhhii.exe