Malware
SystemBC
First seen: 2019-01 • Status: active
Currently Active Threat
SystemBC creates secret tunnels for hackers to communicate with infected computers. Ransomware gangs love using it because it hides their traffic.
Overview
SystemBC is a proxy malware and backdoor that creates encrypted tunnels. It is frequently used by ransomware affiliates to maintain access.
Also Known As
Coroxy
How It Spreads
- • Dropped by other malware
- • Exploit kits
What It Does
- • Creates proxy tunnels
- • Maintains persistence
- • Hides C2 traffic
Is your business exposed?
Target Platforms
Windows
Detection Tips
- • Monitor for proxy traffic patterns
- • Watch for Tor connections
MITRE ATT&CK Techniques
T1090, T1573, T1071
If You're Infected
- 1.
Identify and isolate infected systems
- 2.
Check for ransomware deployment
Is your business exposed?
Check if your company data is circulating on the dark web
Free scan • No credit card required