Phantom
π Security Report Available View on Chrome Web StoreChrome will indicate if you already have this installed.
Overview
A crypto wallet reimagined for DeFi & NFTs
Security Analysis
Permissions
Code Patterns Detected
External Connections
Package Contents 363 files Β· 58MB
βΎ_metadata46KB
verified_contents.json46KB
βΎbackground736KB
serviceWorker.css282KB
serviceWorker.js454KBlarge
βΎfonts1.4MB
Inter-Black.woff135KB
Inter-BlackItalic.woff142KB
Inter-Bold.woff140KB
Inter-BoldItalic.woff146KB
Inter-Italic.woff140KB
Inter-Medium.woff139KB
Inter-MediumItalic.woff146KB
Inter-Regular.woff131KB
Inter-SemiBold.woff139KB
Inter-SemiBoldItalic.woff146KB
βΎimages150KB
βΎadditional-permissions36KB
interstitial.webp19KB
onboarding.webp17KB
βΎarbitrum9KB
onboarding.svg9KB
βΎbase6KB
onboarding.svg6KB
βΎbitcoin18KB
btc-address-types.png18KB
βΎmultichain40KB
multichain-disable-evm.webp2KB
multichain-enable-evm.webp2KB
multichain-swap.webp15KB
multichain.webp10KB
password-multi-chain.webp10KB
βΎseedless2KB
pin-verification.webp2KB
βΎsocial-login
google-icon.webp366B
βΎstaking39KB
p_sol.webp5KB
staking-graph.webp34KB
βΎlocales12.5MB
βΎam433KB
translation.json433KB
βΎar417KB
translation.json417KB
βΎbn583KB
translation.json583KB
βΎde355KB
translation.json355KB
βΎde-DE52KB
translation.json52KB
βΎen296KB
translation.json296KB
βΎes345KB
translation.json345KB
βΎfil347KB
translation.json347KB
βΎfr358KB
translation.json358KB
βΎgu557KB
translation.json557KB
βΎha325KB
translation.json325KB
βΎhi552KB
translation.json552KB
βΎid330KB
translation.json330KB
βΎig364KB
translation.json364KB
βΎig-NG47KB
translation.json47KB
βΎit341KB
translation.json341KB
βΎit-IT50KB
translation.json50KB
βΎja389KB
translation.json389KB
βΎko352KB
translation.json352KB
βΎms336KB
translation.json336KB
βΎmy707KB
translation.json707KB
βΎpa561KB
translation.json561KB
βΎpt342KB
translation.json342KB
βΎru466KB
translation.json466KB
βΎsw329KB
translation.json329KB
βΎta646KB
translation.json646KB
βΎte612KB
translation.json612KB
βΎth553KB
translation.json553KB
βΎtr341KB
translation.json341KB
βΎvi381KB
translation.json381KB
βΎyo404KB
translation.json404KB
βΎzh-CN307KB
translation.json307KB
βΎzh-TW308KB
translation.json308KB
ActivityItemDetail-SNHG6GHY.css285KB
ActivityItemDetail-YT5JYR6Q.js14KB
AdditionalPermissions-7DK7DFYN.css285KB
AdditionalPermissions-PZCNKGQL.js2KB
ApproveUnwrapFungible-GMZWIGB6.css285KB
ApproveUnwrapFungible-O3NOW7JZ.js6KB
AutoSlippageOptIn-NQKMPFQ4.js4KB
AutoSlippageOptIn-US6PJJLV.css285KB
BitcoinAddressTypes-IFPAEKCW.css285KB
BitcoinAddressTypes-UZYAAEEC.js3KB
CollectibleBurnPage-7GVHXXVZ.css283KB
CollectibleBurnPage-C4ZNLPZT.js38KB
CollectiblesVisibilityPage-2FURR3HQ.js5KB
CollectiblesVisibilityPage-XLQCZB5K.css285KB
ConnectHardware.css286KB
ConnectHardware.js3KB
ConvertStakeAccountListPage-3UXGH5TQ.css285KB
ConvertStakeAccountListPage-STL347ZQ.js6KB
ConvertStakeAccountStatusPage-6I2VNTYO.css285KB
ConvertStakeAccountStatusPage-ZJ3ABAOF.js3KB
ConvertToPSOLInfoPage-QJ25XC6O.js3KB
ConvertToPSOLInfoPage-WADK5MCH.css285KB
CreateUsernamePage-5IP7KLWV.css285KB
CreateUsernamePage-ZONTDHR6.js3KB
DepositAddressPage-B2KA7KON.js4KB
DepositAddressPage-CN4S3XIN.css282KB
EthSelectWallet-54DY2ELW.js3KB
EthSelectWallet-X2IC6VVA.css282KB
ExplorePerps-7HD4L3I3.js2KB
ExplorePerps-YLVYJNN7.css283KB
ExploreTabPage-NUBLM4QB.js20KB
ExploreTabPage-WF3TA3HO.css285KB
ExternalLinkWarning-DSECJYFS.css282KB
ExternalLinkWarning-SG4FXBFV.js2KB
FiatRampStart-HJVNWVH6.css285KB
FiatRampStart-XG3O47A3.js2KB
ForceUpgrade-IXRFKTWY.js2KB
ForceUpgrade-MJML4CYY.css285KB
FungibleDetailPage-EMNTXBCJ.js2KB
FungibleDetailPage-GT7RAW6T.css285KB
FungibleVisibilityPage-3CQ4ODBZ.css285KB
FungibleVisibilityPage-I7BQMEJ2.js6KB
HomeHeaderRightButtons-RBVJDLZ6.js2KB
HomeHeaderRightButtons-ZFG7K25I.css285KB
InstantSellSummary-OSXQM3UX.js18KB
InstantSellSummary-XV4STLTW.css285KB
InsufficientBalance-4JXRNOGY.js4KB
InsufficientBalance-X4E6TBIK.css285KB
LNWAZHJI-S45USQYS.js571B
MWZ6AO7Z-EOGUIIXN.js683B
MessageOverlay-SDW6HUSA.js2KB
MessageOverlay-SHAK2S2V.css285KB
MintJitoSOLInfoPage-BWRUMJDS.js3KB
MintJitoSOLInfoPage-YE3AH5MI.css285KB
MintLiquidStakeAmountPage-KI44R7TT.js5KB
MintLiquidStakeAmountPage-XUVICTY7.css285KB
MintLiquidStakeStatusPage-JQB2ZLNH.css285KB
MintLiquidStakeStatusPage-X7FSGYUY.js2KB
MintPSOLInfoPage-4XYQH5T6.js3KB
MintPSOLInfoPage-GJTPYR2W.css285KB
MintPSOLUKInfoPage-ATKKFGJB.css285KB
MintPSOLUKInfoPage-G3IMZ53Q.js3KB
Modal-BMPUQ3HU.css282KB
Modal-DHQXYIAU.js3KB
NetworkHealth-JUIAWKRM.js3KB
NetworkHealth-W2NS25TC.css285KB
NotEnoughSol-OFGIH3RN.js267B
NotEnoughSol-VRSZWSYM.css282KB
Notification.css287KB
Notification.js3KB
Onboarding.css286KB
Onboarding.js116KBlarge
PSOLMarketingPage-3AXQEHCS.js3KB
PSOLMarketingPage-KYLVSLXE.css285KB
PendingTransactionDetail-4ZZTY5TN.js17KB
PendingTransactionDetail-JPJHB5B2.css285KB
Phishing.css282KB
Phishing.js4KB
Popup.css288KB
Popup.entrypoint.css288KB
Popup.entrypoint.js117B
Popup.js22KB
PortfolioHomeTabPage-4UC2PXND.js44KB
PortfolioHomeTabPage-YPWWOCT5.css285KB
ReceivePage-2SD5LTFK.css282KB
ReceivePage-TJ36MEBR.js2KB
RecentActivity-B4XVYS3T.js2KB
RecentActivity-WM5L73VO.css285KB
SearchPage-XEHAG75O.css285KB
SearchPage-YR5RXBJJ.js4KB
SendCollectibleFormPage-EASDCNZC.css285KB
SendCollectibleFormPage-T3T4OTSR.js18KB
SendFungibleFormPage-3KUMIOWL.css285KB
SendFungibleFormPage-KNQ2AGYB.js2KB
SendFungibleSelectPage-4JAHDBFP.css285KB
SendFungibleSelectPage-7UCACVNA.js4KB
SettingsConnectHardware-A4TSEQCH.js5KB
SettingsConnectHardware-UFIKW3SA.css286KB
Sha256SeedCorruptionModal-HAVKBRF2.css282KB
Sha256SeedCorruptionModal-UXZOAIOT.js2KB
ShortcutsModal-N6DVVBTX.js2KB
ShortcutsModal-OJZHV35Z.css282KB
StakeAccountCreateAndDelegateStatusPage-MQKBZSPU.js4KB
StakeAccountCreateAndDelegateStatusPage-OJYQ7XXD.css282KB
StakeAccountDeactivateStakeStatusPage-GS4NK2DE.js4KB
StakeAccountDeactivateStakeStatusPage-OGV42FL4.css282KB
StakeAccountDelegateStakeStatusPage-ALDKPSY3.css282KB
StakeAccountDelegateStakeStatusPage-H7LNPP75.js4KB
StakeAccountDetailPage-3ERCB5VF.js13KB
StakeAccountDetailPage-ZX322BFD.css285KB
StakeAccountWithdrawStakeStatusPage-LPQIGZJ4.js4KB
StakeAccountWithdrawStakeStatusPage-NJN5LZE6.css282KB
StakeAmountPage-LL4Y52FJ.js833B
StakeAmountPage-QOV4HC55.css282KB
StakingMethodSelectionPage-2NTLO3G7.css285KB
StakingMethodSelectionPage-5BTIOBLS.js5KB
SwapConfirmationPage-EGIX4JLD.js5KB
SwapConfirmationPage-FCCJJ32D.css285KB
SwapLedgerSigningStatus-HTG4GUP7.js3KB
SwapLedgerSigningStatus-YKNATSSS.css285KB
SwapPricing-K2VFDC5S.css285KB
SwapPricing-NRGLGVD6.js4KB
SwapPricing-OQQFPNBV.js5KB
SwapProvidersPage-CJ5VV5V2.css285KB
SwapProvidersPage-DVHK6PAG.js5KB
SwapSettings-GQK7W3HS.css285KB
SwapSettings-VUPRDDCD.js16KB
SwapSettingsButton-A4QX4OBQ.css285KB
SwapSettingsButton-J7SEU5RA.js2KB
SwapTabPage-73CMEE4R.js26KB
SwapTabPage-BYZSU433.css286KB
SwapTermsOfServicePage-AMKQWLTK.js4KB
SwapTermsOfServicePage-W44XM2WD.css285KB
SwapperSDKSwapConfirmationPage-4AFUSDKU.js5KB
SwapperSDKSwapConfirmationPage-7Q74LCDL.css285KB
TradeButton-5RUERQ2O.css282KB
TradeButton-RSIWUYUL.js865B
UGCTradeWarning-DBPIGZX5.css285KB
UGCTradeWarning-PG564ZFC.js3KB
ValidatorListPage-WREJ72CE.js4KB
ValidatorListPage-WUU6FD3S.css283KB
WarningInfoModal-EZN4KDMI.css282KB
WarningInfoModal-QTXYK5OI.js1KB
browser-polyfill-UM4GLF6W.js10KB
browser-ponyfill-HBI43FZL.js10KB
btc.js494KBlarge
chunk-232ECFQ2.js40KB
chunk-25DID7WE.js211KBlarge
chunk-27C5WHXN.js812B
chunk-27DG7S3K.js1KB
chunk-2RP5A6AQ.js2KB
chunk-2SHFT73M.js2KB
chunk-35US6LTY.js379B
chunk-3CUBJPXA.js7KB
chunk-3GH554F6.js166B
chunk-3SKHUHDW.js36KB
chunk-4DI7O65W.js435B
chunk-4UT24JNW.js197KBlarge
chunk-546LZ5JG.js3KB
chunk-54BHZIXV.js326B
chunk-5KLAWQ5I.js307B
chunk-5QQLABHI.js128KBlarge
chunk-5VXEZHG3.js4KB
chunk-65RDWMLV.js725B
chunk-6RDFUFLR.js453B
chunk-76GTGNX4.js1KB
chunk-7BS32W7A.js3KB
chunk-7I5E5SYP.js968B
chunk-7RKRB7AY.js106KBlarge
chunk-A2EKZXK7.js3KB
chunk-AGI7WJ7P.js4KB
chunk-AIHKYFAB.js832B
chunk-AUOG6CT3.js43B
chunk-AWRFYQDK.js328KBlarge
chunk-BGV544EK.js579KBlarge
chunk-BHH3THEG.js942B
chunk-BRK5O57Q.js26KB
chunk-BSDLXX7S.js3KB
chunk-CIHLERN4.js4.6MBlarge
chunk-CON7FSFM.js2KB
chunk-CTKHELYY.js15KB
chunk-CYSJTA3Q.js114KBlarge
chunk-D37P7RRS.js1KB
chunk-D76WG7XW.js145KBlarge
chunk-DHS2QH47.js34KB
chunk-DQWLAPQA.js99B
chunk-DRIZICCM.js2KB
chunk-DWDHWNHL.js972B
chunk-EEWWQILW.js8KB
chunk-EFPJHFQY.js515KBlarge
chunk-EJX65Q2T.js1KB
chunk-F6SBYC3D.js8KB
chunk-FK6OHBX4.js9KB
chunk-FNC6PQ53.js724B
chunk-FQBV5QJG.js6KB
chunk-FSTYOY4A.js1.4MBlarge
chunk-FUVB6IFL.js57KBlarge
chunk-FWWE2DYD.js1.4MBlarge
chunk-GJ7UT5NW.js1KB
chunk-HA4TUGK5.js2KB
chunk-HL454LST.js38KB
chunk-HUG3DGCN.js646B
chunk-HURGODJH.js7KB
chunk-I4K4CBSR.js5KB
chunk-IIF2X7Q7.js280KBlarge
chunk-IPWL6XFX.js4KB
chunk-IXMAB2WD.js943B
chunk-J4FNBCJ4.js1KB
chunk-J4XA5VC7.js43B
chunk-JVN33FBZ.js7KB
chunk-JX2TPFWI.js752B
chunk-JX7QBFZF.js3KB
chunk-K7PFHQNX.js2KB
chunk-KAZ3DJ23.js854B
chunk-KLXNZSG6.js22KB
chunk-KLZ6C6NS.js15KB
chunk-LKP4NOOI.js32KB
chunk-LPSBJK7F.js14KB
chunk-M7FJKWYD.js19KB
chunk-MAOG5EUT.js736B
chunk-MRPS7Z2P.js6KB
chunk-MU6TEAU2.js20KB
chunk-MYHDVN4S.js6KB
chunk-N3C6FBKY.js1KB
chunk-N422A44P.js400B
chunk-NGAGF56P.js2KB
chunk-NHEZFGVN.js3KB
chunk-NIJVOHZG.js354B
chunk-NRP35SJD.js1KB
chunk-NTUPCL2S.js997B
chunk-NUHKR4NX.js1KB
chunk-O5XVFGTE.js4KB
chunk-O7BYUZ3F.js2.3MBlarge
chunk-ON24NQBY.js7KB
chunk-OQCYFGCD.js1KB
chunk-OYTVLDUG.js512B
chunk-PAHPIPMW.js2KB
chunk-PNKEUJ2S.js35KB
chunk-QNUKRGX2.js5KB
chunk-RAYPQKAM.js2KB
chunk-RKMCII43.js2KB
chunk-RWWUDPHX.js326B
chunk-SJQLONF6.js524KBlarge
chunk-STWUKBQB.js193KBlarge
chunk-T4LPFZXJ.js5KB
chunk-TUOG7FIA.js687B
chunk-UC4BHP3C.js3KB
chunk-UOXAA72B.js928B
chunk-UPVPKQLZ.js3KB
chunk-UVNH67O5.js16KB
chunk-V6JVIHQG.js215B
chunk-VEWH6BRG.js786B
chunk-VGK34MMH.js1KB
chunk-VLNIU3Y6.js521KBlarge
chunk-VY7GCACH.js464B
chunk-W5KSMX3E.js4KB
chunk-WATXCWBS.js211KBlarge
chunk-WDDK3AWY.js997B
chunk-WECM7OP6.js3KB
chunk-WKJYWAXG.js31KB
chunk-WQUY5CPO.js4KB
chunk-WVRYN4MY.js2KB
chunk-WZJPTVB3.js23KB
chunk-X5QDYITX.js5KB
chunk-XB7OHFTT.js400KBlarge
chunk-XDCLH6WN.js5KB
chunk-XNFUGDYH.js82KBlarge
chunk-XXHC4QUM.js3KB
chunk-Y3QU47QM.js2KB
chunk-Y4DAKDMX.js737B
chunk-YFDUDLCB.js11KB
chunk-YJCG6GWC.js10KB
chunk-YM5PMKZK.js4KB
chunk-YP4NXRXZ.js528B
chunk-YTLSA5Z6.js1KB
chunk-Z354SFCI.js1KB
chunk-ZFOOECLU.js13KB
connect_hardware.html548B
contentScript.js100KBlarge
evmAsk.js494KBlarge
evmMetamask.js494KBlarge
evmPhantom.js494KBlarge
fonts.css1KB
grey_logo.png1KB
icon128.png2KB
icon16.png424B
icon48.png993B
icon512.png11KB
juicebox-sdk_bg-IUF2TCSW.js3KB
juicebox-sdk_bg-LUYFYBUJ.wasm2.8MB
manifest.json2KB
model-viewer-DQPPBUJJ.js848KBlarge
notification.html777B
onboarding.html538B
phantom.js494KBlarge
phishing.html534B
popup.html740B
profiler-GMKNGWQR.js6KB
rive-AI73FSNU.wasm1.3MB
social-wallet.html542B
solana.js494KBlarge
startRecording-VNARZSRE.js21KB
sui.js494KBlarge
What This Extension Does
Phantom is a Chrome extension described as a "crypto wallet reimagined for DeFi & NFTs". Based on its name, category, and permissions, it appears to be designed to manage digital assets and interact with decentralized finance (DeFi) platforms.Permissions Explained
Here's an explanation of each permission declared by the extension:- activeTab: Allows the extension to access the currently active tab in the browser.
- alarms: Enables the extension to schedule background tasks or notifications.
- identity: Grants the extension access to user identity information, such as login credentials and profile data. This is unusual for a crypto wallet extension, which typically doesn't require direct access to user identities.
- storage: Allows the extension to store and retrieve data locally on the user's device.
- scripting: Enables the extension to execute scripts in the browser context.
- tabs: Grants the extension access to tab management functionality, such as creating new tabs or switching between existing ones.
- unlimitedStorage: Allows the extension to store an unlimited amount of data locally on the user's device. This is unusual for a Chrome extension and may indicate that the extension stores sensitive user data.
- webRequest: Enables the extension to intercept and modify web requests made by the browser.
- sidePanel: Grants the extension access to display a panel in the browser sidebar.
What We Found in the Code
Here's an explanation of each automated flag:- [high] Function constructor used β dynamic code execution: This is a normal coding pattern for creating objects dynamically. It doesn't necessarily indicate malicious behavior.
- [medium] innerHTML assignment β potential XSS vector: While
innerHTMLcan be used to inject malicious scripts, it's also commonly used for legitimate UI rendering purposes. Without more context, it's difficult to determine if this is a security concern. - [info] Makes HTTP requests: This is a normal behavior for extensions that need to communicate with external services or APIs.
- [high] Listens to keyboard events: This can be used for legitimate purposes such as implementing shortcuts or hotkeys. However, it may also indicate an attempt to intercept sensitive user input.
- [medium] Reads clipboard content: This is a normal behavior for extensions that need to interact with the user's clipboard data.
- [medium] Potential data exfiltration pattern: Without more context, it's difficult to determine if this flag indicates malicious behavior. However, it may indicate an attempt to transmit sensitive user data outside of the extension.
External Connections
The extension communicates with the following domains:www.w3.org: A standard domain for web development resources.github.com: A common domain for hosting open-source projects and code repositories.www.apache.org: A standard domain for Apache software projects.react.dev: A domain related to React.js, a popular JavaScript library.sola.na: An unknown domain that may be related to the extension's functionality.help.phantom.com: A domain likely related to the extension's support resources.feross.org: A domain related to Feross Aboukhadijeh's projects and blog.developer.mozilla.org: A standard domain for Mozilla developer documentation.assets.phantom.app,node-proxy.phantom.app,phantom.com: Domains likely related to the extension's functionality or infrastructure.cdn.jsdelivr.net: A content delivery network (CDN) used to distribute assets.
Things to Consider
Based on the extension's name, description, and permissions, it appears to be designed for managing digital assets and interacting with DeFi platforms. However, some of its declared permissions seem broader than necessary for this purpose. For example:- The
identitypermission may not be required for a crypto wallet extension. - The
unlimitedStoragepermission is unusual for a Chrome extension and may indicate that the extension stores sensitive user data. - The
webRequestpermission may be used to intercept or modify web requests, which could potentially compromise user security.
Similar Extensions
More in extensions β
Grammarly for Chrome helps you write with confidence. Get AI support for grammar, clarity, and tone, from first draft toβ¦
The world's most trusted crypto wallet
LastPass is an award-winning password manager for secure credential management on any device.
A next level crypto wallet for Solana, Ethereum, Monad, Sui, and more.