Malicious Source Code Bypassing Windows UAC Allegedly for Sale Online

A user on a dark web forum marketplace is reportedly selling a malicious source code that can bypass User Account Control (UAC) on Windows XP through Windows 11.

By Marco Rizal - Editor, Journalist 2 Min Read
Share this post?
Share this post?

A user on a dark web forum marketplace is reportedly selling a malicious source code that can bypass User Account Control (UAC) on Windows XP through Windows 11.

A malicious threat actor, that goes by the username “nebullainstalls,” is purportedly selling malicious source code that bypasses User Account Control (UAC) on Windows operating systems ranging from Windows XP to the most recent version of Windows 11.

Dark Web Informer, a Twitter user, was the first to make public this concerning news. It was observed that the threat actor listed the code up for sale on a forum marketplace where a variety of malware is purchased and sold.

The malicious code is being sold for a mere $5,000, raising significant security concerns for Windows users.

User Account Control, a security feature that was implemented in Windows to prevent unauthorized changes that necessitate administrator-level permission, is essential in guarding the operating system from malicious activities.

Since the source code can evade UAC, the malicious code can operate as an administrator without getting the admin prompt window to pop-up, thereby granting it the ability to make unauthorized modifications.

Image of threat actor allegedly selling UAC bypass code on a forum marketplace
Threat actor allegedly selling UAC bypass code on a forum marketplace

At the time of writing, there are no updates regarding the legitimacy of the UAC bypass source code. However, if proven to be real, the negative effects of malicious software embedded with this source code can lead to disaster.

Malware that has the ability to bypass UAC has the ability to propagate more easily and operate with administrative privileges, rendering it more dangerous and difficult to detect or remove.

If this UAC circumvent code is verified as genuine, it could result in a surge of new, more potent malware attacks that target Windows users in the near future.

Leave a comment