Choziosi (Malware Family)

Choziosi

aka: ChromeLoader

Choziosi is a browser hijacker for Chrome. It was first seen in January 2022. It commonly infects users via pirated media downloads like games, software, wallpapers or movies. The initial infectors are available for several platforms such as Mac and Windows.

Its main component is the Chrome browser extension written in JavaScript with the purpose of serving advertisments and hijacking search requests to Google, Yahoo and Bing.

References

2023-06-09 ⋅ ConnectWise ⋅ ConnectWise CRU
SmashJacker (ChromeLoader variant)
Choziosi

2022-09-19 ⋅ vmware ⋅ Abe Schneider, Bethany Hardin, Lavine Oluoch
The Evolution of the Chromeloader Malware
Choziosi

2022-08-30 ⋅ CYBER GEEKS All Things Infosec ⋅ CyberMasterV
ChromeLoader Browser Hijacker
Choziosi

2022-05-25 ⋅ Red Canary ⋅ Aedan Russell
ChromeLoader: a pushy malvertiser
Choziosi Choziosi

2022-03-11 ⋅ Blackberry ⋅ BlackBerry Research & Intelligence Team
ChromeLoader Infects the Browser by Loading Malicious Extension
Choziosi Choziosi

2022-02-03 ⋅ Gdata ⋅ Karsten Hahn
QR codes on Twitter deliver malicious Chrome extension
Choziosi

2022-01-09 ⋅ Github (xephora) ⋅ @x3ph1
Observed malicious IOCs for the ChromeLoader/CS_installer aka Choziosi Loader Malware
Choziosi Choziosi

There is no Yara-Signature yet.

Choziosi Propose Change

References

Choziosi