A new malware strain is being distributed by threat actors to hide malicious network traffic with the help of SOCKS5 proxies set up on compromised computers. The malware, provisionally named SystemBC, uses secure HTTP connections to encrypt the information sent to command-and-control servers by other strains dropped on infected machines. SystemBC was observed by Proofpoint’s researchers while spreading to potential targets via several Fallout EK powered campaigns during June and July. The attackers behind the campaigns distributing SystemBC use the exploit kits which drop the proxy malware to also infect their victims with other malicious payloads such as the modular Danabot banking Trojan.
Source: https://www.bleepingcomputer.com/news/security/new-systembc-malware-uses-your-pc-to-hide-malicious-traffic/