Byshell 1.09 Build 20071216

Byshell 1.09 Build 20071216
(Backdoor.Win32.Visel.bk)
(Backdoor.Win32.Visel.ay for Server)

by ?

Released in December 2007

Made in China


Server
Dropped Files:
c:\WINDOWS\system32\SteelKernel32.dll    Size: 135,168 bytes 
c:\WINDOWS\system32\SteelKernel32.exe    Size: 192,512 bytes  


Startup:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SteelKernel "ImagePath"
Data: C:\WINDOWS\System32\SteelKernel32.exe 

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SteelKernel "ImagePath"
Data: C:\WINDOWS\System32\SteelKernel32.exe 	


Tested on Windows XP
December 27, 2007

MegaSecurity