Техническая информация
- '%TEMP%\cfcabffibdd.exe' 5-3-4-3-7-7-8-7-6-2-5 Kk1FQTYuLC8wHipOUj5NQj01KRotSUBRU0xLREE9Ny8bKkFFUE1CPDYrMDEvNBwsPEI8NioeKktPS0FOPExYQ0I4LC8sMi0ZJ0w/UFFAT1tSS0U1YW5yazUsK3Bea24nbmZgKF5sbSZdWW1bLGRpY2sdKDxEQj1JRD86HCw9KjUmKx4qPy85KioZJz0tOygsHStBLTYlKhotPzA6KS4ZKEhLSUJQPlFbTUtCTjo9VzgbLExPSD1NPE5dQFBJPToZKEhLSUJQPlFbSzpGPTYaLUBTQltSS0U1GSlDU0BcP0o9RUFHPzsbKkVLUE1YOktJVU5ATzkyGShMQTtMRlRMUVxOS0Q2Gi1RSDouHSg9Syo3HipNUkpRQkY9WFFDRz5MSUJCRjlAP1NNRzocLEJMV0tPTE9ESkE6bWttXhotTUBRUU9HQkZAWVNOQE9bQTpSSzYsHipDRkBCUTYpGSlHTlpBVUs6RkE8WUNJPk9VTU0+PDZgX2duYhwsPUhPR0ZNPD9cRU02LjEnKy8wKS41NCcuKRkpUkRIQjkuLSsrKiowMy8xHCw9SE9HRk08P1xQRkY+NSspMyotLS0yIysyKyo4Ly8nPUo=
- '<SYSTEM32>\wbem\wmiadap.exe' /R /T
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423799587.txt bios get version
- '<SYSTEM32>\wbem\wmic.exe' /output:%TEMP%\81423799587.txt bios get serialnumber
- <SYSTEM32>\wbem\AutoRecover\C8463ECBE33BC240263A0B094E46D510.mof
- %TEMP%\tmp4.tmp
- %TEMP%\tmp5.tmp
- %TEMP%\81423799587.txt
- <SYSTEM32>\wbem\AutoRecover\23BDE61F1F4FACE17E9B0C01F2A1FD9B.mof
- %TEMP%\tmp3.tmp
- %TEMP%\nsd2.tmp\rbc.dll
- %TEMP%\rc43.cfcabffibdd
- %TEMP%\cfcabffibdd.zip
- %TEMP%\rc43.exe
- %TEMP%\nsd2.tmp\nsisunz.dll
- %TEMP%\81423799587.txt
- <SYSTEM32>\wbem\Performance\WmiApRpl.ini
- %TEMP%\tmp5.tmp
- %TEMP%\tmp3.tmp
- %TEMP%\tmp4.tmp
- %TEMP%\rc43.exe в %TEMP%\cfcabffibdd.exe