Техническая информация
- '%TEMP%\bchcabffgbja.exe' 4-0-2-4-2-7-2-2-9-2-5 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
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422329834.txt bios get version
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81422329834.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81422329834.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsx2.tmp\vdo.dll
- %TEMP%\insHv41.bchcabffgbja
- %TEMP%\bchcabffgbja.zip
- %TEMP%\insHv41.exe
- %TEMP%\nsx2.tmp\nsisunz.dll
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81422329834.txt
- %TEMP%\tmp3.tmp
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- <SYSTEM32>\PerfStringBackup.TMP
- %TEMP%\insHv41.exe в %TEMP%\bchcabffgbja.exe