Техническая информация
- '%TEMP%\cccabfhdbdh.exe' 6-8-7-2-5-2-1-5-0-3-0 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
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81428461768.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81428461768.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81428461768.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsv2.tmp\7tm.dll
- %TEMP%\rc58.cccabfhdbdh
- %TEMP%\cccabfhdbdh.zip
- %TEMP%\rc58.exe
- %TEMP%\nsv2.tmp\nsisunz.dll
- %TEMP%\81428461768.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\rc58.exe в %TEMP%\cccabfhdbdh.exe