HIGH RISK NaN/100

Shortfy – Smart URL Shortener

Unknown developer

Threat Summary

Risk Level
Critical Issues
High Issues
Total Findings

Key Security Threats

HIGH Malware Signature

YARA rule match: -SQLInjection

/tmp/extract-2cf8a1ba87b344e5c3bb9be4df8b93d2cdb22d1622e97a8a011da2b28693b632-1601176072/popup.js

HIGH Malware Signature

YARA rule match: -postinstall_file_manipulation

/tmp/extract-2cf8a1ba87b344e5c3bb9be4df8b93d2cdb22d1622e97a8a011da2b28693b632-1601176072/popup.js

HIGH Malware Signature

YARA rule match: -AlertStatementsShouldNotBeUsed

/tmp/extract-2cf8a1ba87b344e5c3bb9be4df8b93d2cdb22d1622e97a8a011da2b28693b632-1601176072/popup.js

HIGH Malware Signature

YARA rule match: -postinstall_file_download

/tmp/extract-2cf8a1ba87b344e5c3bb9be4df8b93d2cdb22d1622e97a8a011da2b28693b632-1601176072/popup.js

HIGH Malware Signature

YARA rule match: -postinstall_environment_access

/tmp/extract-2cf8a1ba87b344e5c3bb9be4df8b93d2cdb22d1622e97a8a011da2b28693b632-1601176072/popup.js

All Findings (33)

View all 33 security findings
Malware Signature

YARA rule match: -SQLInjection

Malware Signature

YARA rule match: -postinstall_file_manipulation

Malware Signature

YARA rule match: -AlertStatementsShouldNotBeUsed

Malware Signature

YARA rule match: -postinstall_file_download

Malware Signature

YARA rule match: -postinstall_environment_access

Malware Signature

YARA rule match: -postinstall_system_command

Malware Signature

YARA rule match: -postinstall_crypto_operations

Suspicious Network Activity

Network call of type 'fetch' detected.

Suspicious Network Activity

Network call of type 'fetch' detected.

Suspicious Network Activity

Network call of type 'fetch' detected.

Suspicious Network Activity

Network call of type 'fetch' detected.

Indicator of Compromise

XIOC detected IP: ::

Indicator of Compromise

XIOC detected URL: https://shortfy.xyz';

Indicator of Compromise

XIOC detected URL: https://skkhandokar22.pythonanywhere.com/api';

Indicator of Compromise

XIOC detected URL: https://api.qrserver.com/v1/create-qr-code/?size=140x140&data=$

Indicator of Compromise

XIOC detected URL: https://shortfy.xyz/analytics/$

Indicator of Compromise

XIOC detected URL: https://www.google.com/s2/favicons?sz=64&domain=$

Indicator of Compromise

XIOC detected Domain: items.map

Indicator of Compromise

XIOC detected Domain: item.id

Indicator of Compromise

XIOC detected URL: https://clients2.google.com/service/update2/crx

Indicator of Compromise

XIOC detected URL: https://skkhandokar22.pythonanywhere.com/*

Indicator of Compromise

XIOC detected URL: https://api.qrserver.com/*

Indicator of Compromise

XIOC detected URL: https://shortfy.xyz/*

Indicator of Compromise

XIOC detected URL: https://shortfy.xyz

Indicator of Compromise

XIOC detected Domain: clients2.google.com

Indicator of Compromise

XIOC detected Domain: skkhandokar22.pythonanywhere.com

Indicator of Compromise

XIOC detected Domain: api.qrserver.com

Indicator of Compromise

XIOC detected Domain: shortfy.xyz

Indicator of Compromise

XIOC detected Domain: www.google.com

Indicator of Compromise

XIOC detected Domain: btn.id

Indicator of Compromise

XIOC detected Domain: qrbox.id

Suspicious Network Activity

Network call of type 'fetch' detected.

manifest-analysis

Potentially sensitive permission 'tabs' declared in manifest.

Recommended Action

This extension has significant security concerns that warrant careful review. Consider uninstalling or finding a safer alternative. If you must use it, limit the permissions and monitor for suspicious activity.

View Full Security Report Find Safer Alternatives

Analysis performed on 3/10/2026 · Version 2.2.1

Data sourced from automated security scanning. For detailed analysis, view the full security scorecard.