Is Proton ICS Auto-Importer malware?

Proton ICS Auto-Importer shows significant security concerns with a undefined risk rating (NaN/100). While not confirmed malware, undefined high severity issues were detected. Use with caution.

What security issues does Proton ICS Auto-Importer have?

Our analysis found undefined security indicators: undefined critical, undefined high, undefined medium severity. Key issues include: Malware Signature, Malware Signature, Malware Signature.

Should I uninstall Proton ICS Auto-Importer?

Consider uninstalling Proton ICS Auto-Importer or finding a safer alternative. The extension has undefined high severity security issues that warrant concern. Review the detailed findings before continuing to use it.

HIGH RISK NaN/100

Proton ICS Auto-Importer

Unknown developer · 3 users at risk

Threat Summary

Risk Level

Critical Issues

High Issues

Total Findings

Key Security Threats

HIGH Malware Signature

YARA rule match: -postinstall_obfuscation

/tmp/extract-6165d1d147e4975798956320affa601f9d1f633ce1d59f9f2ff165e47aeed05e-1910991049/content-intercept.js

HIGH Malware Signature

YARA rule match: -postinstall_network_communication

/tmp/extract-6165d1d147e4975798956320affa601f9d1f633ce1d59f9f2ff165e47aeed05e-1910991049/content-intercept.js

HIGH Malware Signature

YARA rule match: -postinstall_file_download

/tmp/extract-6165d1d147e4975798956320affa601f9d1f633ce1d59f9f2ff165e47aeed05e-1910991049/content-intercept.js

HIGH Malware Signature

YARA rule match: -postinstall_obfuscation

/tmp/extract-6165d1d147e4975798956320affa601f9d1f633ce1d59f9f2ff165e47aeed05e-1910991049/background.js

HIGH Malware Signature

YARA rule match: -postinstall_file_manipulation

/tmp/extract-6165d1d147e4975798956320affa601f9d1f633ce1d59f9f2ff165e47aeed05e-1910991049/background.js

All Findings (30)

View all 30 security findings

Malware Signature

YARA rule match: -postinstall_obfuscation

Malware Signature

YARA rule match: -postinstall_network_communication

Malware Signature

YARA rule match: -postinstall_file_download

Malware Signature

YARA rule match: -postinstall_obfuscation

Malware Signature

YARA rule match: -postinstall_file_manipulation

Malware Signature

YARA rule match: -postinstall_network_communication

Malware Signature

YARA rule match: -NoUseWeakRandom

Malware Signature

YARA rule match: -postinstall_obfuscation

Malware Signature

YARA rule match: -postinstall_file_manipulation

Malware Signature

YARA rule match: -postinstall_network_communication

Indicator of Compromise

XIOC detected Domain: signingca1.addons.mozilla.org

Indicator of Compromise

XIOC detected URL: https://account.proton.me/u/1/calendar/import-export?ics_id=*

Indicator of Compromise

XIOC detected MD5 Hash: ac88a85cf6f4173553d2e18484f2dc1e

Indicator of Compromise

XIOC detected Domain: location.search

Indicator of Compromise

XIOC detected Domain: importbtn.click

Indicator of Compromise

XIOC detected Domain: resp.meta.name

Indicator of Compromise

XIOC detected Domain: submitbtn.click

Indicator of Compromise

XIOC detected URL: http://addons.mozilla.org/ca/crl.pem0N

Indicator of Compromise

XIOC detected URL: https://account.proton.me/u/1/calendar/import-export?ics_id=

Indicator of Compromise

XIOC detected URL: https://account.proton.me/

Indicator of Compromise

XIOC detected Domain: mozilla.com

Indicator of Compromise

XIOC detected Domain: addons.mozilla.org

Indicator of Compromise

XIOC detected Domain: content-signature.mozilla.org

Indicator of Compromise

XIOC detected Domain: tbb6d87a3a61422258ebec547752ec264.ac88a85cf6f4173553d2e18484f2dc1e.addons.mozilla.org

Indicator of Compromise

XIOC detected Domain: account.proton.me

Indicator of Compromise

XIOC detected Domain: date.now

Indicator of Compromise

XIOC detected Domain: message.id

manifest-analysis

Potentially sensitive permission 'tabs' declared in manifest.

Suspicious Network Activity

Network call of type 'fetch' detected.

Suspicious Network Activity

Network call of type 'fetch' detected.

Recommended Action

This extension has significant security concerns that warrant careful review. Consider uninstalling or finding a safer alternative. If you must use it, limit the permissions and monitor for suspicious activity.

View Full Security Report Find Safer Alternatives