Winker (n)
(Backdoor.Winker.n)

by ?

The name "winker" is derived from "WinKernal"

Written in Visual C++

Released in october 2003

Made in China

more versions 


dropped file:
c:\WINDOWS\SYSTEM\winkernal.exe 

size: 51,200 bytes 


startup:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run "systhread" 

registry added:
HKEY_LOCAL_MACHINE\Software\WinKernal
MegaSecurity