Researchers at GFI Labs discovered a renewed wave of attempts by attackers to trick users into downloading and installing a file that purports to be a Google Chrome update. The file itself has been around for a while, being seen on around 14 or so websites since around October and is listed at Malwrwr.com which mentions attempts to access Firefox s Password Manager local database. The most recent scheme uses a similar approach as the past ones and also uses related files. It seems to want to swipe information of a very similar nature to a ZBot infection from August of 2012 detailed on the ShadowServer Blog.
Source: https://threatpost.com/attackers-using-fake-chrome-updates-lure-victims-011113/77396/