Byshell 1.09 Build 20071220

Byshell 1.09 Build 20071220
(Backdoor.Win32.Visel.ck)
(Backdoor.Win32.Visel.ay for Server)

by ?

Released in December 2007

Made in China


Server
Dropped Files:
c:\WINDOWS\system32\SteelKernel32.dll    Size: 135,168 bytes 
c:\WINDOWS\system32\SteelKernel32.exe    Size: 192,512 bytes 

Startup:
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SteelKernel "ImagePath"
Data: C:\WINDOWS\System32\SteelKernel32.exe 




Tested on Windows XP
December 27, 2007

MegaSecurity