Cybercriminals tend to use various EKs (Exploit Kits) to spread all malware types to unsuspecting victims. Often, they use already known exploits in popular software tools. These exploits are usually patched up by the developers of the applications quickly, but users often neglect to update all their software on a regular basis, and this is how they become vulnerable to cyber crooks.
Some of the most popular EKs are the Fallout Exploit Kit and RIG Exploit Kit, and they have been spotted to distribute the Amadey Loader and the DanaBot Banking Trojan regularly. Researchers also saw a malware sample that they had not encountered previously. Unlike the Danabot Banking Trojan, it serves a much simpler purpose - to set up a SOCKS5 proxy server on the infected computer. This might not looks like a major issue to the average user, but they should know that this will enable the attacker to use the infected computers to reroute unsafe traffic through them, therefore making it difficult to uncover their Command & Control (C&C) server infrastructure. This threat is called SystemBC and operates very silently. Once it compromises a system, it configures the SOCKS5 proxy and proceeds to encrypt all the information exchanged between the threat and the servers of the attackers. However, the SystemBC malware does not have a long list of capabilities, so it is likely that the attackers will only use it in combination with various other hacking tools.
Sold on Hacking Forums
Malware researchers discovered that the authors of the SystemBC malware are selling an older variant of the threat on a popular hacking forum. Since it is available publicly, it is likely that many different ill-minded actors may take advantage of the SystemBC tool. This will make it harder for cyber security experts to track the cybercriminals involved in the propagation of the SystemBC malware significantly.
To prevent threats like the SystemBC malware from infiltrating your system, you should make sure to keep all your applications up to date at all times. It may sound like a tedious task, but this will save you a lot of headaches. It is also crucial to obtain a legitimate anti-malware application to keep your PC secure.
Do You Suspect Your PC May Be Infected with SystemBC & Other Threats? Scan Your PC with SpyHunterSpyHunter is a powerful malware remediation and protection tool designed to help provide PC users with in-depth system security analysis, detection and removal of a wide range of threats like SystemBC as well as a one-on-one tech support service. Download SpyHunter's FREE Malware Remover
Security Doesn't Let You Download SpyHunter or Access the Internet?Solutions: Your computer may have malware hiding in memory that prevents any program, including SpyHunter, from executing on your computer. Follow to download SpyHunter and gain access to the Internet:
- Use an alternative browser. Malware may disable your browser. If you're using IE, for example, and having problems downloading SpyHunter, you should open Firefox, Chrome or Safari browser instead.
- Use a removable media. Download SpyHunter on another clean computer, burn it to a USB flash drive, DVD/CD, or any preferred removable media, then install it on your infected computer and run SpyHunter's malware scanner.
- Start Windows in Safe Mode. If you can not access your Window's desktop, reboot your computer in "Safe Mode with Networking" and install SpyHunter in Safe Mode.
- IE Users: Disable proxy server for Internet Explorer to browse the web with Internet Explorer or update your anti-spyware program. Malware modifies your Windows settings to use a proxy server to prevent you from browsing the web with IE.
This article is provided "as is" and to be used for educational information purposes only. By following any instructions on this article, you agree to be bound by the disclaimer. We make no guarantees that this article will help you completely remove the malware threats on your PC. Spyware changes regularly; therefore, it is difficult to fully clean an infected machine through manual means.