Researchers at ESET have discovered an unreported malware dubbed Win32/StealthFalcon that exploits the Windows component Background Intelligent Transfer Service (BITS).

BITS is used by software updaters, messengers and other services and applications that need to transfer large amount of data without chomping on network bandwidth, as is works when a user is not using the machine.

According to ESET Research, “The Win32/StealthFalcon backdoor, which appears to have been created in 2015, allows the attacker to control the compromised computer remotely.”

The malware was created by Stealth Falcon, a notorious threat group that targets political activists and journalists in the Middle East.