Техническая информация
- '%TEMP%\bbgcabfdhbah.exe' 6-9-1-0-8-1-2-7-6-0-7 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81429635005.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81429635005.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81429635005.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsv2.tmp\you.dll
- %TEMP%\insHv22.bbgcabfdhbah
- %TEMP%\bbgcabfdhbah.zip
- %TEMP%\insHv22.exe
- %TEMP%\nsv2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- %TEMP%\81429635005.txt
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\insHv22.exe в %TEMP%\bbgcabfdhbah.exe