Challenge>

Suspicious Browser Extension

A person working in the accounting department wanted to add a browser extension, but it was deleted from his device because it was perceived as harmful by AVs.

Can you analyze the situation by analyzing this suspicious browser extension? We are waiting for information from you.


File link: /root/Desktop/ChallengeFiles/FinanceEYEfeeder.crx

This challenge prepared by @DXploiter


Writeups:

  • Suspicious Browser Extension — WriteUp
  • LetsDefend’s Malware Analysis: Suspicious Browser Extension Walk-Through
  • Malware Analysis - Suspicious Browser Extension