Red Canary experts talked about the dangerous ChromeLoader virus. This was reported by TechRadar.

The report says that the effectiveness of the ChromeLoader virus software has increased significantly since the beginning of the year. The malware spreads through hacking programs and after installation it upgrades the Google Chrome browser installed on the victims’ computers.

Experts say the virus is tailored to attack both Windows and macOS users. In the first case, the program is distributed as a file with the iso extension and named CS_Installer.exe, in the second – dmg. The experts also explained the principle of the program. After running ChromeLoader, the malware decodes the PowerShell command, extracts the archive from the server and downloads it as an extension for Google Chrome.

After activation, the program removes traces of its presence, which makes it difficult to detect. Experts identified ChromeLoader as a browser hijacker that can display modified search results. Attackers earn commissions on affiliate programs by showing fake dating sites or unwanted software.