MAL-2026-6474: Malicious code in ref-slot (npm)
The npm package 'ref-slot' version 1.0.9 contains malicious code executed during installation. It harvests sensitive files from the user's system, uploads them to an attacker-controlled server, installs a persistent SSH backdoor on Linux systems with passwordless sudo, and dynamically updates its targeting patterns from a remote server. Systems with this package installed should be considered fully compromised, and all secrets should be rotated immediately.
AI Analysis
Technical Summary
The 'ref-slot' npm package version 1.0.9 includes a postinstall hook that runs a multi-stage malicious payload. First, it collects sensitive files from the user's home directory and Windows drive roots, including environment files, wallet keys, configuration files, and documents, uploading them to a remote server. Second, on Linux systems, it installs a persistent SSH backdoor by appending an attacker-supplied public key to authorized_keys, changing ownership of the .ssh directory, enabling the firewall, and allowing inbound SSH traffic, leveraging passwordless sudo privileges. Third, it fetches live scan and block patterns from the attacker's server to dynamically control what data is stolen. This results in full system compromise and persistent remote access.
Potential Impact
Systems that install the affected package are fully compromised. Sensitive credentials and files are exfiltrated, and persistent remote access is established on Linux hosts with passwordless sudo. This compromises confidentiality, integrity, and availability of affected systems. Secret rotation is mandatory as attackers may have obtained all stored keys and credentials.
Mitigation Recommendations
No official patch or fix is currently available. Immediate removal of the 'ref-slot' package version 1.0.9 is required. All secrets and credentials stored on the compromised system must be rotated from a separate, trusted device. Due to the persistent backdoor and full system compromise, a full system rebuild or forensic analysis is recommended to ensure removal of all malicious components.
MAL-2026-6474: Malicious code in ref-slot (npm)
Description
The npm package 'ref-slot' version 1.0.9 contains malicious code executed during installation. It harvests sensitive files from the user's system, uploads them to an attacker-controlled server, installs a persistent SSH backdoor on Linux systems with passwordless sudo, and dynamically updates its targeting patterns from a remote server. Systems with this package installed should be considered fully compromised, and all secrets should be rotated immediately.
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The 'ref-slot' npm package version 1.0.9 includes a postinstall hook that runs a multi-stage malicious payload. First, it collects sensitive files from the user's home directory and Windows drive roots, including environment files, wallet keys, configuration files, and documents, uploading them to a remote server. Second, on Linux systems, it installs a persistent SSH backdoor by appending an attacker-supplied public key to authorized_keys, changing ownership of the .ssh directory, enabling the firewall, and allowing inbound SSH traffic, leveraging passwordless sudo privileges. Third, it fetches live scan and block patterns from the attacker's server to dynamically control what data is stolen. This results in full system compromise and persistent remote access.
Potential Impact
Systems that install the affected package are fully compromised. Sensitive credentials and files are exfiltrated, and persistent remote access is established on Linux hosts with passwordless sudo. This compromises confidentiality, integrity, and availability of affected systems. Secret rotation is mandatory as attackers may have obtained all stored keys and credentials.
Mitigation Recommendations
No official patch or fix is currently available. Immediate removal of the 'ref-slot' package version 1.0.9 is required. All secrets and credentials stored on the compromised system must be rotated from a separate, trusted device. Due to the persistent backdoor and full system compromise, a full system rebuild or forensic analysis is recommended to ensure removal of all malicious components.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- MAL-2026-6474
- Osv Schema Version
- 1.7.4
- Aliases
- ["GHSA-fm4g-q7h6-hqjw"]
- Ecosystems
- ["npm"]
- Database Specific Severity
- null
- Cvss Version
- null
Threat ID: 6a3ef7c927e9c79719000240
Added to database: 06/26/2026, 22:06:01 UTC
Last enriched: 06/26/2026, 22:35:54 UTC
Last updated: 06/26/2026, 22:35:54 UTC
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.