Shampoo

Malware updated a month ago (2024-11-29T13:58:16.792Z)

Download STIX

Preview STIX

Shampoo is a malware campaign that was highlighted in Check Point Research's August 2023 Most Wanted Malware report. The malware, named "Shampoo," targets Chrome browser users through fake ads loaded with malicious software. Victims are tricked into running VBScript files that install harmful Chrome extensions, as part of the Shampoo ChromeLoader infection chain. The research behind this threat was backed by VirusTotal. The Shampoo malware was notably spread via a QR code discount offer on a website called "Pretty Girl Shopping." Users, like Gina, were offered a discount on a bottle of Flake Free Shampoo and led to the website upon scanning the QR code. Once there, they were presented with various high-priced items and encouraged to sign up for the Pretty Girl Shopping credit card. As they navigated the site, the malware would infect their systems. The repercussions of the Shampoo malware campaign underscore the importance of cybersecurity measures, even in seemingly innocuous areas such as online shopping. While putting locks on every shampoo dispenser may seem excessive, it serves as a metaphor for the necessary precautions needed to protect against such threats. The Shampoo case serves as a stark reminder of the potential risks associated with suspicious downloads, emails, or websites, and the importance of maintaining robust security protocols.

Description last updated: 2024-11-15T16:19:51.346Z

What's your take? (Question 1 of 2)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Possible Aliases / Cluster overlaps

It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at. Create a free account to see the source evidence for each alias, and help fix any errors.

Alias Description	Votes
Chromeloader is a possible alias for Shampoo. ChromeLoader, first identified in early 2022, is a malicious software (malware) that primarily targets browsers to steal sensitive information and execute additional payloads, usually involving other malware families. The malware has been notably used in fake ROBLOX and Nintendo game cracks, which w	3

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Malware

Chrome

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Source Document References

Information about the Shampoo Malware was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
CERT-EU	9 months ago	Reducing the cloud security overhead
CERT-EU	a year ago	Threat modeling: the future of cybersecurity or another buzzword⎥Derek Fisher (author of The Application Security Handbook)
Checkpoint	a year ago	18th September – Threat Intelligence Report - Check Point Research
CERT-EU	a year ago	August 2023's Most Wanted Malware : New ChromeLoader Campaign Spreads Malicious Browser Extensions while QBot is Shut Down by FBI – Global Security Mag Online
CERT-EU	2 years ago	ChromeLoader-Malware-Kampagne bestraft Raubkopierer \| ZDNet.de
CERT-EU	2 years ago	HP waarschuwt: ChromeLoader-malwarecampagne straft illegale gebruikers
CERT-EU	2 years ago	Prevent Your Silver From Tarnishing With This Hairy Hack \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker – National Cyber Security Consulting
CERT-EU	2 years ago	Le malware ChromeLoader cible les utilisateurs de sites de piratage – Global Security Mag Online
CERT-EU	2 years ago	Le malware ChromeLoader cible les utilisateurs de sites de piratage – Global Security Mag Online
CERT-EU	2 years ago	Comic: Goodnight Phone
CERT-EU	2 years ago	Shampoo ChromeLoader Extension Virus - Removal
CERT-EU	2 years ago	New Mystic Stealer Malware Targets 40 Web Browsers and 70 Browser Extensions
DARKReading	2 years ago	'Shampoo' ChromeLoader Variant Difficult to Wash Out