Is AliExpress Helper safe to use?

AliExpress Helper has a security risk score of 85.2/100 (CRITICAL risk). Our security analysis detected 86 findings. Review the detailed security assessment below to understand the specific risks before installation.

What are the security risks of AliExpress Helper?

Based on our automated security analysis, AliExpress Helper presents critical risk level. The extension is analyzed for malware patterns, secret exposure, network communications, permissions, and supply chain vulnerabilities.

How is the security score calculated?

Risky Plugins calculates security scores using weighted categories: severity of findings (25 points max), malware detections (35 points), secret exposure (28 points), network communications (10 points), and obfuscation (10 points). Scores range from 0-100, with higher scores indicating greater risk.

What does CRITICAL, HIGH, MEDIUM, LOW, MINIMAL risk mean?

CRITICAL (80-100): Severe security issues like malware. HIGH (60-79): Significant vulnerabilities. MEDIUM (40-59): Moderate security concerns. LOW (20-39): Minor issues. MINIMAL (0-19): Very low risk. Always review findings before installing any extension.

Is "AliExpress Helper" on Microsoft Edge Add-ons Safe to Install?

Name: AliExpress Helper
Availability: InStock
Author: PlatonDevs

PlatonDevs · edge · v0.0.5.3

Be more efficient with this AliExpress tool: - Filter search results by number of reviews - Get the seller's product pictures and videos - Get the users review pictures - Get the users reviews in CSV format - Export your Shopping cart...

Risk Assessment

Analyzed

85.2

out of 100

CRITICAL

86 security findings detected across all analyzers

Severity Breakdown

Critical

High

Medium

Low

Info

Finding Categories

Malware Signatures

Obfuscation

Network

IoC Indicators

YARA Rules Matched

7 rules(26 hits)

postinstall crypto operations postinstall obfuscation postinstall network communication postinstall system command postinstall environment access postinstall file download postinstall file manipulation

Detailed Findings

41 total

YARA Rule Matches

7 rules

Indicators of Compromise

Network indicators, suspicious strings, and potential IoCs extracted during analysis

URLs

IP Addresses

Domains

Strings

All Indicators · 42

Domain

detected Domain: e.target

XIOC detected Domain: e.target

extracted_from_files

Domain

detected Domain: i.download

XIOC detected Domain: i.download

extracted_from_files

URL

detected URL: https://feedback.aliexpress.com/pc/searchEvaluation.do?productId=$

XIOC detected URL: https://feedback.aliexpress.com/pc/searchEvaluation.do?productId=$

extracted_from_files

URL

detected URL: https://www.aliexpress.com/p/order/detail.html?orderId=

XIOC detected URL: https://www.aliexpress.com/p/order/detail.html?orderId=

extracted_from_files

URL

detected URL: https://platondevs.nl/alihelper

XIOC detected URL: https://platondevs.nl/alihelper

extracted_from_files

URL

detected URL: https://track.aliexpress.com/logisticsdetail.htm?tradeId=

XIOC detected URL: https://track.aliexpress.com/logisticsdetail.htm?tradeId=

extracted_from_files

URL

detected URL: https://ae01.alicdn.com/kf/$

XIOC detected URL: https://ae01.alicdn.com/kf/$

extracted_from_files

URL

detected URL: https://www.aliexpress.com/item/'+a+'.html

XIOC detected URL: https://www.aliexpress.com/item/'+a+'.html

extracted_from_files

URL

detected URL: https://www.aliexpress.com/item/'+i+'.html

XIOC detected URL: https://www.aliexpress.com/item/'+i+'.html

extracted_from_files

Domain

detected Domain: u.id

XIOC detected Domain: u.id

extracted_from_files

Domain

detected Domain: abortorder.style

XIOC detected Domain: abortorder.style

extracted_from_files

URL

detected URL: https://*.aliexpress.com/item/*

XIOC detected URL: https://*.aliexpress.com/item/*

extracted_from_files

URL

detected URL: https://edge.microsoft.com/extensionwebstorebase/v1/crx

XIOC detected URL: https://edge.microsoft.com/extensionwebstorebase/v1/crx

extracted_from_files

URL

detected URL: https://www.aliexpress.com/item/$

XIOC detected URL: https://www.aliexpress.com/item/$

extracted_from_files

URL

detected URL: https://chrome.google.com/webstore/detail/aliexpress-helper/ojgaknagnojclcnmenmickjcnpbijill?hl=en

XIOC detected URL: https://chrome.google.com/webstore/detail/aliexpress-helper/ojgaknagnojclcnmenmickjcnpbijill?hl=en

extracted_from_files

Domain

detected Domain: e.mm

XIOC detected Domain: e.mm

extracted_from_files

Domain

detected Domain: window.open

XIOC detected Domain: window.open

extracted_from_files

Domain

detected Domain: www.aliexpress.com

XIOC detected Domain: www.aliexpress.com

extracted_from_files

Domain

detected Domain: e.click

XIOC detected Domain: e.click

extracted_from_files

Domain

detected Domain: p.id

XIOC detected Domain: p.id

extracted_from_files

Domain

detected Domain: g.id

XIOC detected Domain: g.id

extracted_from_files

Domain

detected Domain: h.id

XIOC detected Domain: h.id

extracted_from_files

Domain

detected Domain: e.cc

XIOC detected Domain: e.cc

extracted_from_files

Domain

detected Domain: e.id

XIOC detected Domain: e.id

extracted_from_files

Domain

detected Domain: e.fi

XIOC detected Domain: e.fi

extracted_from_files

Domain

detected Domain: feedback.aliexpress.com

XIOC detected Domain: feedback.aliexpress.com

extracted_from_files

Domain

detected Domain: searchevaluation.do

XIOC detected Domain: searchevaluation.do

extracted_from_files

Domain

detected Domain: ae01.alicdn.com

XIOC detected Domain: ae01.alicdn.com

extracted_from_files

Domain

detected Domain: l.click

XIOC detected Domain: l.click

extracted_from_files

Domain

detected Domain: platondevs.nl

XIOC detected Domain: platondevs.nl

extracted_from_files

Domain

detected Domain: track.aliexpress.com

XIOC detected Domain: track.aliexpress.com

extracted_from_files

detected IP: 0.0.5.3

XIOC detected IP: 0.0.5.3

extracted_from_files

Domain

detected Domain: i.click

XIOC detected Domain: i.click

extracted_from_files

Domain

detected Domain: chrome.downloads.download

XIOC detected Domain: chrome.downloads.download

extracted_from_files

Domain

detected Domain: kk.country

XIOC detected Domain: kk.country

extracted_from_files

Domain

detected Domain: e.trackingnumbersinfo.map

XIOC detected Domain: e.trackingnumbersinfo.map

extracted_from_files

Domain

detected Domain: www.inkscape.org

XIOC detected Domain: www.inkscape.org

extracted_from_files

Domain

detected Domain: aliexpress.com

XIOC detected Domain: aliexpress.com

extracted_from_files

Domain

detected Domain: r.target

XIOC detected Domain: r.target

extracted_from_files

Domain

detected Domain: r.click

XIOC detected Domain: r.click

extracted_from_files

Domain

detected Domain: e.pa

XIOC detected Domain: e.pa

extracted_from_files

URL

detected URL: https://*.aliexpress.com/

XIOC detected URL: https://*.aliexpress.com/

extracted_from_files

Security Analysis Summary

Security Analysis Overview

AliExpress Helper is a edge extension published by PlatonDevs. Version 0.0.5.3 has been analyzed by the Risky Plugins security platform, receiving a risk score of 85.2/100 (CRITICAL risk) based on 86 security findings.

Risk Assessment

This extension presents critical security risk. Severe issues were detected, potentially including malware indicators, exposed secrets, or dangerous behaviors. Installation is strongly discouraged until these issues are addressed.

Findings Breakdown

High: 26 finding(s)
Medium: 47 finding(s)

What Was Analyzed

The security assessment covers multiple analysis categories:

Malware Detection: YARA rule matching against 2,400+ malware signatures
Secret Detection: Scanning for exposed API keys, tokens, and credentials
Static Analysis: Code-level security analysis for common vulnerability patterns
Network Analysis: Detection of suspicious network communications and endpoints
Obfuscation Detection: Identification of code obfuscation techniques

Developer Information

AliExpress Helper is published by PlatonDevs on the edge marketplace.

Recommendation

This extension is not recommended for installation without thorough manual review. Consider alternatives with lower risk scores, or contact the developer to address the identified security concerns.

Source Code Viewer

Source Code Not Available

Source code is not available for this version of the extension.

Frequently Asked Questions

Similar Extensions

Related extensions from the same publisher or marketplace

StackExchangeNotifications

Unknown Developer

CRITICAL

Reverse Image Search

Unknown Developer

CRITICAL

Atomseo Broken and Redirect Links Checker

Unknown Developer

CRITICAL

GPX File Viewer

Unknown Developer

CRITICAL

linkit

Unknown Developer

CRITICAL

Navo

Unknown Developer

CRITICAL

Risk Assessment

Severity Breakdown

Finding Categories

YARA Rules Matched

Detailed Findings

NET-FETCH-worker.js-1

OBFUSCATION-large_base64

HASH-b8026be4ced6c7eb

HASH-257abe56b037d832

HASH-19bf99b4866e2b7e

HASH-86894db3b75b99e7

HASH-357c9ce40d20b792

HASH-675a14f8d2fa1be5

HASH-7194680b803e1c2f

HASH-c86c9bd7c8285dac

HASH-ab81eb142eb4e67b

HASH-06a464ab6e62345f

HASH-39eddafac8797878

HASH-6dba3e1d84157709

HASH-6057d454fd5482dd

YARA Rule Matches

postinstall crypto operations

postinstall obfuscation

postinstall network communication

postinstall system command

postinstall environment access

postinstall file download

postinstall file manipulation

Indicators of Compromise

All Indicators · 42

Security Analysis Summary

Security Analysis Overview

Risk Assessment

Findings Breakdown

What Was Analyzed

Developer Information

Recommendation

Frequently Asked Questions

Similar Extensions

StackExchangeNotifications

Reverse Image Search

Atomseo Broken and Redirect Links Checker

GPX File Viewer

linkit

Navo