HIGH RISK NaN/100

Flipkart Review Finder Phoenix

Unknown developer · 32 users at risk

Threat Summary

Risk Level
Critical Issues
High Issues
Total Findings

Key Security Threats

HIGH Malware Signature

YARA rule match: -postinstall_network_communication

/tmp/extract-5c88a84fdf290bd61214da6210b5d1db5dbcd2f26fd206699a085b165fd1ab7c-644124121/popup.js

HIGH Malware Signature

YARA rule match: -postinstall_file_download

/tmp/extract-5c88a84fdf290bd61214da6210b5d1db5dbcd2f26fd206699a085b165fd1ab7c-644124121/popup.js

HIGH Malware Signature

YARA rule match: -NoUseWeakRandom

/tmp/extract-5c88a84fdf290bd61214da6210b5d1db5dbcd2f26fd206699a085b165fd1ab7c-644124121/popup.js

HIGH Malware Signature

YARA rule match: -postinstall_network_communication

/tmp/extract-5c88a84fdf290bd61214da6210b5d1db5dbcd2f26fd206699a085b165fd1ab7c-644124121/popup.css

HIGH Malware Signature

YARA rule match: -postinstall_network_communication

/tmp/extract-5c88a84fdf290bd61214da6210b5d1db5dbcd2f26fd206699a085b165fd1ab7c-644124121/popup.html

All Findings (31)

View all 31 security findings
Malware Signature

YARA rule match: -postinstall_network_communication

Malware Signature

YARA rule match: -postinstall_file_download

Malware Signature

YARA rule match: -NoUseWeakRandom

Malware Signature

YARA rule match: -postinstall_network_communication

Malware Signature

YARA rule match: -postinstall_network_communication

Malware Signature

YARA rule match: -postinstall_file_manipulation

manifest-analysis

Potentially sensitive permission 'tabs' declared in manifest.

Suspicious Network Activity

Network call of type 'fetch' detected.

Indicator of Compromise

XIOC detected Domain: signingca1.addons.mozilla.org

Indicator of Compromise

XIOC detected URL: https://www.flipkart.com/reviews/$

Indicator of Compromise

XIOC detected URL: https://www.flipkart.com/reviews/$

Indicator of Compromise

XIOC detected URL: https://govindam-zg2i.onrender.com/*

Indicator of Compromise

XIOC detected URL: https://govindam-zg2i.onrender.com

Indicator of Compromise

XIOC detected URL: https://govindamstores.netlify.app/apps

Indicator of Compromise

XIOC detected MD5 Hash: 8d8decd7896a5009bc7043abf7113b33

Indicator of Compromise

XIOC detected Domain: btn.id

Indicator of Compromise

XIOC detected Domain: btn.style.top

Indicator of Compromise

XIOC detected Domain: govindam-zg2i.onrender.com

Indicator of Compromise

XIOC detected Domain: govindamstores.netlify.app

Indicator of Compromise

XIOC detected Domain: data.email

Indicator of Compromise

XIOC detected Email: [email protected]

Indicator of Compromise

XIOC detected URL: http://addons.mozilla.org/ca/crl.pem0N

Indicator of Compromise

XIOC detected Domain: mozilla.com

Indicator of Compromise

XIOC detected Domain: addons.mozilla.org

Indicator of Compromise

XIOC detected Domain: content-signature.mozilla.org

Indicator of Compromise

XIOC detected Domain: govindam.com

Indicator of Compromise

XIOC detected Domain: tfe51224e4a2b03a9578ab2ba73559356.8d8decd7896a5009bc7043abf7113b33.addons.mozilla.org

Indicator of Compromise

XIOC detected Domain: www.flipkart.com

Indicator of Compromise

XIOC detected Domain: date.now

Suspicious Network Activity

Network call of type 'fetch' detected.

Suspicious Network Activity

Network call of type 'fetch' detected.

Recommended Action

This extension has significant security concerns that warrant careful review. Consider uninstalling or finding a safer alternative. If you must use it, limit the permissions and monitor for suspicious activity.

View Full Security Report Find Safer Alternatives

Analysis performed on 3/10/2026 · Version 1.0.1

Data sourced from automated security scanning. For detailed analysis, view the full security scorecard.