Socksonly.7z -

Acts as a SOCKS5 proxy , allowing attackers to pivot through infected machines to reach other parts of a network or bypass firewalls [3, 4].

The file is a compressed archive frequently associated with malware distribution , specifically related to the deployment of SystemBC , a remote access trojan (RAT) and SOCKS5 proxy [1, 2]. It is commonly used by cybercriminals to establish encrypted tunnels and hide malicious traffic within a compromised network [2, 3]. Technical Summary File Type: 7-Zip Compressed Archive (.7z) [1]. socksonly.7z

Often dropped into directories like C:\ProgramData\ or %TEMP% after an initial breach (via phishing or RDP exploits) [2, 5]. Acts as a SOCKS5 proxy , allowing attackers

Immediately isolate any workstation where this file is discovered from the rest of the network [2]. Acts as a SOCKS5 proxy