Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'MSU32' = '%APPDATA%\msupdsc.exe'
- %APPDATA%\msupdsc.exe
- %APPDATA%\msupdsc.exe
- 'be#####e.servebeer.com':80
- 'be#####e.servebeer.com':443
- '22#.#32.203.88':443
- 'mo######ine.redirectme.net':80
- 'mo######ine.redirectme.net':443
- 'mo######ine.redirectme.net':8080
- be#####e.servebeer.com/0000/a184562.asp
- mo######ine.redirectme.net/0000/a192890.asp
- mo######ine.redirectme.net/0000/a176593.asp
- mo######ine.redirectme.net/0000/a145250.asp
- be#####e.servebeer.com/0000/a166578.asp
- DNS ASK be#####e.servebeer.com
- DNS ASK mo######ine.redirectme.net
- ClassName: 'Indicator' WindowName: ''