Техническая информация
- '%TEMP%\egcabfbcebab.exe' 4-6-3-1-4-1-3-0-2-7-9 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81428562328.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81428562328.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81428562328.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsk2.tmp\bmhau.dll
- %TEMP%\1428289311.egcabfbcebab
- %TEMP%\egcabfbcebab.zip
- %TEMP%\1428289311.exe
- %TEMP%\nsk2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- %TEMP%\81428562328.txt
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\1428289311.exe в %TEMP%\egcabfbcebab.exe