Техническая информация
- '%TEMP%\egcabfbdgih.exe' 7-7-5-7-6-8-8-0-1-7-0 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81429169823.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81429169823.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81429169823.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsa2.tmp\druug.dll
- %TEMP%\1428318111.egcabfbdgih
- %TEMP%\egcabfbdgih.zip
- %TEMP%\1428318111.exe
- %TEMP%\nsa2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- %TEMP%\81429169823.txt
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\1428318111.exe в %TEMP%\egcabfbdgih.exe