CryptoBandits Malware Doubles as a Backdoor, Abuses Tor

CryptoBandits malware uses a local SOCKS5 proxy to route traffic through Tor, combining data theft with remote code execution. The malware functions as a backdoor, enabling attackers to steal cryptocurrency and execute commands on infected systems.