Info Stealer

Chaes

First seen: 2020 • Status: active

Currently Active Threat

Chaes is a banking thief that targets Brazilian online shoppers, watching their browser to steal payment information.

Overview

Chaes is a banking trojan primarily targeting Brazilian e-commerce users. It intercepts banking sessions and steals credentials through browser manipulation.

Also Known As

Chae$

How It Spreads

  • Compromised websites
  • Malicious installers
  • Drive-by downloads

What It Does

  • Banking credential theft
  • Browser session hijacking
  • Credit card theft
  • E-commerce targeting

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Monitor for Chaes browser extensions
  • Check for banking session manipulation
  • Analyze Brazilian payment site access
  • Review installer sources

MITRE ATT&CK Techniques

T1185, T1539, T1555, T1189

If You're Infected

  1. 1.

    Remove Chaes components

  2. 2.

    Reset banking credentials

  3. 3.

    Contact financial institutions

  4. 4.

    Clear browser data and extensions

Related Malware

Grandoreiro, Mekotio, Casbaneiro

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices