Security News > 2023 > September > New Python Variant of Chaes Malware Targets Banking and Logistics Industries

Banking and logistics industries are under the onslaught of a reworked variant of a malware called Chaes.

A subsequent analysis from Avast in early 2022 found that the threat actors behind the operation, who call themselves Lucifer, had breached more than 800 WordPress websites to deliver Chaes to users of Banco do Brasil, Loja Integrada, Mercado Bitcoin, Mercado Livre, and Mercado Pago.

Online, which acts as a beacon to transmit a message back to the attacker that the malware is running on the machine.

Stealer, an improved variant of Chrolog which plunders credit card data, cookies, autofill, and other information stored in web browsers, and.

"The Chronod module introduces another component used in the framework, a component called Module Packer," Morphisec explained.

"The malware uses Google's DevTools Protocol to connect to the current browser instance," the company said.

News URL

https://thehackernews.com/2023/09/new-python-variant-of-chaes-malware.html