Wicked Eye 1.2

Wicked Eye 1.2
(Backdoor.Win32.StealthEye.11.k)
(Backdoor.Win32.StealthEye.11.b for Server)

by WickedSoft

Released in April 2007





Server
dropped file:
c:\WINDOWS\camdrv.exe
size: 49,152 bytes 

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "cam"
data: C:\WINDOWS\camdrv.exe 

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "camdrvs"
data: C:\Winnt\camdrv.exe 



tested on Windows XP
May 29, 2007

MegaSecurity