Техническая информация
- '%TEMP%\eecabfbdhcaj.exe' 3-0-1-2-4-7-5-6-2-5-0 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81430616122.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81430616122.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81430616122.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsl2.tmp\fteng.dll
- %TEMP%\1428105711.eecabfbdhcaj
- %TEMP%\eecabfbdhcaj.zip
- %TEMP%\1428105711.exe
- %TEMP%\nsl2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- %TEMP%\81430616122.txt
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\1428105711.exe в %TEMP%\eecabfbdhcaj.exe