New malware found disguising as privacy tool