Beagle駭蟲再變種
新一代感染*.exe檔案

Beagle 駭蟲除了大量發送駭蟲信件後，再出一新版本，會感染系統中的*.exe檔案，使用者小心夾帶 .pif, .zip, .rar的信件附加檔案，檔案大小約21-22kb。

此版本駭蟲同時也利用P2P網路共享軟體，假借為應用程式工具，當使用者下載以下軟體，且大小為到21-22k時，請小心留意。
Microsoft Office 2003 Crack, Working!.exe
Microsoft Office XP working Crack, Keygen.exe
Microsoft Windows XP, WinXP Crack, working Keygen.exe
Porno Screensaver.scr
Porno, sex, oral, anal cool, awesome!!.exe
Porno pics arhive, xxx.exe
Serials.txt.exe
Windown Longhorn Beta Leak.exe
Windows Sourcecode update.doc.exe
XXX hardcore images.exe
Opera 8 New!.exe
WinAmp 5 Pro Keygen Crack Update.exe
WinAmp 6 New!.exe
Matrix 3 Revolution English Subtitles.exe
Adobe Photoshop 9 full.exe
Ahead Nero 7.exe
ACDSee 9.exe

Beagle 變種駭蟲信件：
主旨：(下列其中一項)
E-mail account security warning.
Notify about using the e-mail account.
Warning about your e-mail account.
Important notify about your e-mail account.
Email account utilization warning.
E-mail technical support message.
E-mail technical support warning.
Email report
Important notify
Account notify
E-mail warning
Notify from e-mail technical support.
Notify about your e-mail account utilization.
E-mail account disabling warning.
Re: Msg reply
Re: Hello
Re: Yahoo!
Re: Thank you!
Re: Thanks :)
RE: Text message
Re: Document
Incoming message
Re: Incoming Message
Re: Incoming Fax
Hidden message
Fax Message Received
Protected message
RE: Protected message
Forum notify
Request response
Site changes
Re: Hi
Encrypted document

內文：(下列其中一項)
Dear user of %s,
Dear user of %s gateway e-mail server gateway,
Dear user of e-mail server %Z,
Hello user of %s e-mail server,
Dear user of %s mailing system,
Dear user, the management of %s mailing system wants to let you know that,
註： %s代表您的Emaild Dimain Name

附加檔案：可能以.pif, .zip, .rar等形式出現


Beagle 變種駭蟲行為：
1.大量發送駭蟲信件。
2.執行駭蟲後，會將駭蟲本身複製到 Windows\System\winupd.exe (2000/XP/NT系統為 Winnt\System32\winupd.exe)。
3.修改登錄檔，使開機即啟動駭蟲。
4.執行後駭蟲會，會嘗試關閉一些安全防護軟體的常駐程式。
5.嘗試感染系統中的 *.exe 檔案。