Beware Free VPN Extensions
Tags
attack-pattern: | Data Direct Domains - T1583.001 Domains - T1584.001 Server - T1583.004 Server - T1584.004 Connection Proxy - T1090 Remote Access Tools - T1219 Scripting - T1064 Scripting |
Common Information
Type | Value |
---|---|
UUID | 385e47ec-5cd1-4ace-8ede-709d6706496e |
Fingerprint | ba42db049c3022e2 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Dec. 20, 2024, 4:13 p.m. |
Added to db | Dec. 21, 2024, 4:10 a.m. |
Last updated | Dec. 21, 2024, 4:11 a.m. |
Headline | Beware Free VPN Extensions |
Title | Beware Free VPN Extensions |
Detected Hints/Tags/Attributes | 23/1/21 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 7 | clients2.google.com |
|
Details | Domain | 1 | fvpvpnextension.com |
|
Details | Domain | 1 | thundervpnextension.com |
|
Details | File | 44 | background.js |
|
Details | File | 2 | 16.png |
|
Details | File | 3 | 32.png |
|
Details | File | 4 | popup.html |
|
Details | File | 4 | 128.png |
|
Details | File | 2 | 48.png |
|
Details | File | 1 | 569.js |
|
Details | File | 7 | popup.js |
|
Details | File | 1 | fvpvpn.json |
|
Details | File | 1 | e.json |
|
Details | File | 1 | proxy.settings |
|
Details | File | 1 | thundervpn.json |
|
Details | sha256 | 1 | e7862d35efc5f17e46ad6edf7bc9f4d215298e15c6a21ba94fba0080f5b35f7a |
|
Details | IPv4 | 1 | 169.150.236.104 |
|
Details | Url | 3 | https://clients2.google.com/service/update2/crx |
|
Details | Url | 1 | https://fvpvpnextension.com/static/file/fvpvpn.json").then |
|
Details | Url | 1 | https://fvpvpnextension.com/static/file/fvpvpn.json |
|
Details | Url | 1 | https://thundervpnextension.com/static/file/thundervpn.json |