crimsonmods.cc: badware #31381
Description
Prerequisites
- This is NOT a YouTube, Facebook, Twitch or a shortener/hosting site report. These sites MUST be reported by clicking their respective links.
- I read and understand the policy about what is a valid filter issue.
- I verified that this issue is not a duplicate. (Use this button to find out.). Comment in the old issue threads even when they are closed or even if you have a different problem.
- I did not remove any of the default filter lists, or I have verified that the issue was not caused by removing any of the default lists.
- I did not enable additional or non-default filter lists, or I have identified which specific stock list is causing the issue.
- I do not have custom filters/rules, or I have verified that the issue still occurs without custom filters/rules.
- I have verified that the web browser's built-in content blocker/tracking protection, network wide/DNS blocking, or my VPN is not causing the issue.
- I have turned off all other extensions and the issue still persists. (exception "Firefox Multi-Account Containers").
- If this is about a breakage or detection, I have verified that it is caused by uBlock Origin and isn't a site or browser issue.
- I have verified that the browser I am using is up to date with no pending updates.
- I did not answer truthfully to ALL the above checkboxes.
URL address of the web page
https://crimsonmods.cc/
Category
badware
Description
The website identified leads users to download which serve infostealer malware.
SHA256 Hash of one of the malware samples: b80696214ba426d7359e7cc237cec93923b1bc01bc9fef7f52a6311d871ebda2
Browser name and version
Firefox 146.0.1
Other extensions used
Country
No response
Screenshot(s)
https://github.com/user-attachments/assets/27709f84-c3a1-4c0c-a86f-7a8ba16a49cd
https://github.com/user-attachments/assets/4556fe14-32b7-4b99-979c-74b7c97fed2d
https://github.com/user-attachments/assets/c56a4a63-7c3e-4d01-be8f-7a02cca0b45b
Screenshot(s)
Configuration
Details
uBlock Origin: 1.68.0
Firefox: 146
filterset (summary):
network: 418851
cosmetic: 268687
scriptlet: 61192
html: 3089
listset (total-discarded, last-updated):
removed:
urlhaus-1: null
added:
https://filters.adtidy.org/extension/ublock/filters/3.txt: 80534-1088, 3m
https://malware-filter.gitlab.io/malware-filter/urlhaus-filter.txt: 51773-0, 3m
adguard-generic: 91584-531, 3m
adguard-mobile: 11955-71, 3m
adguard-spyware-url: 2393-136, 3m
block-lan: 89-0, 3m
curben-phishing: 132035-74, 3m
adguard-cookies: 36502-93, 3m
ublock-cookies-adguard: 5264-75, 3m
fanboy-cookiemonster: 44986-3654, 3m
ublock-cookies-easylist: 5264-5264, 3m
adguard-social: 25501-48, 3m
[13 lists not shown]: [too many]
default:
user-filters: 11-0, never
ublock-filters: 43879-4989, 1h.36m Δ
ublock-badware: 10999-167, 1h.36m Δ
ublock-privacy: 3560-481, 1h.36m Δ
ublock-unbreak: 2777-155, 1h.36m Δ
ublock-quick-fixes: 459-59, 1h.36m Δ
easylist: 84646-1258, 1h.36m Δ
easyprivacy: 55108-21482, 1h.36m Δ
plowe-0: 3495-1491, 3m
filterset (user): [array of 11 redacted]
trustedset:
added: [array of 91 redacted]
userSettings: [none]
hiddenSettings: [none]
supportStats:
allReadyAfter: 253 ms (selfie)
maxAssetCacheWait: 186 ms
cacheBackend: indexedDB
popupPanel:
blocked: 0