Техническая информация
- '%TEMP%\edcabfbdced.exe' 4-8-3-6-2-9-2-0-8-0-9 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81431037752.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81431037752.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsj2.tmp\fweum.dll
- %TEMP%\1428051711.edcabfbdced
- %TEMP%\edcabfbdced.zip
- %TEMP%\1428051711.exe
- %TEMP%\nsj2.tmp\nsisunz.dll
- %TEMP%\tmp5.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\1428051711.exe в %TEMP%\edcabfbdced.exe