Hacking campaigns have all end goal sorts - collecting money, causing intentional destruction or simply wreaking havoc for a laugh. Some hackers, though, use their skills to collect information, which can then be used in harmful operations. This is the case with the SOUNDWAVE malware. This threat belongs to the arsenal of the ScarCruft hacking group. This group of highly-skilled individuals hails from North Korea and also is known as APT37 (Advanced Persistent Threat). Cybersecurity experts at large believe that the ScarCruft hacking group is working for the North Korean government and is used as an attack vector against perceived enemies of the regime. This explains why most of the victims of the APT37's threatening campaigns are South Korean. This hacking group is known to attack individuals on high-ranking positions and government or military-related organizations.
The malware in question today operates on the down-low and is not meant to be destructive to the host. Instead, it serves as a tool in espionage-related operations. The SOUNDWAVE malware is capable of infiltrating a targeted system, hijacking the microphone of the victim, and using it to record audio. The malware also makes sure to connect to its operators' C&C (Command & Control) server, as this is the means of receiving commands from the ScarCruft hacking group. The audio recorded in this operation is then stored in a '.log' file, which will then be transferred to the C&C of the ScarCruft hacking group. The SOUNDWAVE malware is capable of recording up to 100 minutes of audio. Unlike other hacking tools from the APT37 group's arsenal, this malware does not have any additional capabilities and only serves as a reconnaissance tool.
The ScarCruft hacking group is expanding its arsenal of tools rapidly and will likely continue wreaking havoc and making headlines in the future.
Do You Suspect Your PC May Be Infected with SOUNDWAVE & Other Threats? Scan Your PC with SpyHunterSpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like SOUNDWAVE as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Security Doesn't Let You Download SpyHunter or Access the Internet?Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
- Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
- Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
- Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in "Safe Mode with Networking" and install SpyHunter in Safe Mode.
- IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.