SYMBOLCOMMON_NAMEaka. SYNONYMS
win.choziosi (Back to overview)

Choziosi

aka: ChromeLoader

Choziosi is a browser hijacker for Chrome. It was first seen in January 2022. It commonly infects users via pirated media downloads like games, software, wallpapers or movies. The initial infectors are available for several platforms such as Mac and Windows.

Its main component is the Chrome browser extension written in JavaScript with the purpose of serving advertisments and hijacking search requests to Google, Yahoo and Bing.

References
2023-06-09ConnectWiseConnectWise CRU
SmashJacker (ChromeLoader variant)
Choziosi
2022-09-19vmwareAbe Schneider, Bethany Hardin, Lavine Oluoch
The Evolution of the Chromeloader Malware
Choziosi
2022-08-30CYBER GEEKS All Things InfosecCyberMasterV
ChromeLoader Browser Hijacker
Choziosi
2022-05-25Red CanaryAedan Russell
ChromeLoader: a pushy malvertiser
Choziosi Choziosi
2022-03-11BlackberryBlackBerry Research & Intelligence Team
ChromeLoader Infects the Browser by Loading Malicious Extension
Choziosi Choziosi
2022-02-03GdataKarsten Hahn
QR codes on Twitter deliver malicious Chrome extension
Choziosi
2022-01-09Github (xephora)@x3ph1
Observed malicious IOCs for the ChromeLoader/CS_installer aka Choziosi Loader Malware
Choziosi Choziosi

There is no Yara-Signature yet.