New variations of the browser hijacker Chromeloader Malware, also known as Choziosi Loader and ChromeBack, have been spotted in the wild. It was initially discovered in January 2022. The malware is infamous for its volume, persistence, and infection method, which incorporates the aggressivity of PowerShell.
There are now four different Chromeloader multi-stage malware variants known to Palo Alto Networks Unit 42 researchers.