Malware Alert !!! This One can replace your Chrome browser with its Look alike

via MalwareBytes

Security researchers have found a new piece of Adware that replaces your entire browser with a Dangerous Copy of Google Chrome. As both look similar, the user cannot easily make out the changes in the system.

This new adware named eFast Browser works same as Google Chrome installing and running itself in its place .

The adware as the name states, does all the malicious stuff what such programs usually do like

  • Generating pop-up, coupon, pop-under and other similar ads on your screen
  • Placing other advertisements into your web pages
  • Redirecting you to malicious websites containing bogus contents
  • Tracking your movements on the web to help nefarious marketers send more crap your way to generating revenue

Therefore, we got to know that you’ll surely repent having this installed in your PC after some issues like Privacy/Identity Theft.

What’s So Different about this Adware

Unlike all adware trying to take control on the victim’s system, this one is quite different, eFast Browser uses a deceiving method of replacing your entire browser with a malicious copy of Chrome.

In a report published Malwarebytes detailed that the nefarious software attempts to delete Chrome and itself takes its place, allowing it to hijack several file associations including HTML, JPG, PDF, and GIF, as well as URLs associations including HTTP, HTTPS, and MAILTO.

The eFast Browser is based Chromium open-source software, which tricks the user to believe it as the ligitimate Google Chrome browser.

via MalwareBytes

The malicious computer program comes from a company calling itself Clara Labs, who developed a slew of similar browsers under titles such as BoBrowser, Unico, and Tortuga.

How does eFast Browser Install itself in the First Place?

eFast Browser is just another Potentially Unwanted Program (PUP), according to PCrisk, which tries to get itself on your PC by burrowing itself into the free software installers from dubious sources on the web.
The SwiftOnSecurity twitter account noted, it’s easier for malicious software to replace your browser than to infect it. This is due to Chrome’s security against in-browser malware that cyber criminals are now overwriting the browser completely.

It is relatively easy to avoid installing eFast Browser and, fortunately, also relatively easy to uninstall if you have found it on your computer. You can follow the removal instructions detailed by PCRisk.

Source : MalwareBytes’s Blog & The Hacker News

Adware Removal Instructions by PCrisk : https://www.pcrisk.com/removal-guides/9480-ads-by-efast-browser

Advertisements