MAL-2026-6486: Malicious code in unsafe-malicious-package (npm)
The npm package 'unsafe-malicious-package' contains malicious code that exfiltrates AWS credentials from the installer's system during installation. Its postinstall script reads the ~/.aws/credentials file and sends its contents over plaintext HTTP to a hardcoded IP address without user consent. The package falsely advertises a benign purpose and includes evasion techniques targeting AI scanners and registry UIs. It also manipulates its dependency graph by declaring a self-dependency.
AI Analysis
Technical Summary
The 'unsafe-malicious-package' npm package executes a postinstall lifecycle script that reads the installer's AWS credentials file located at ~/.aws/credentials and transmits the data unencrypted to a hardcoded external IP address (http://139.59.87.78:8765/listener). This exfiltration occurs automatically without user consent or opt-in. The package's stated functionality to print the current date/time is a decoy, and it employs evasion tactics such as prompt-injection content aimed at AI scanners and XSS payloads targeting registry user interfaces. Additionally, the package declares a self-referential dependency, which is an unusual pattern likely intended to manipulate the installation graph. Multiple specific versions of the package are affected.
Potential Impact
Sensitive AWS credentials stored on the installer's machine can be stolen and transmitted to an attacker-controlled server, potentially leading to unauthorized access to AWS resources. The exfiltration occurs silently during installation, increasing the risk of compromise. The presence of evasion techniques indicates intent to bypass detection mechanisms, raising the threat level.
Mitigation Recommendations
No official patch or remediation is currently documented. Users should avoid installing the 'unsafe-malicious-package' in any of the affected versions. Review and remove the package if already installed. Monitor for any unauthorized AWS activity and consider rotating AWS credentials if exposure is suspected. Since no vendor advisory or patch information is available, check trusted sources regularly for updates or official guidance.
MAL-2026-6486: Malicious code in unsafe-malicious-package (npm)
Description
The npm package 'unsafe-malicious-package' contains malicious code that exfiltrates AWS credentials from the installer's system during installation. Its postinstall script reads the ~/.aws/credentials file and sends its contents over plaintext HTTP to a hardcoded IP address without user consent. The package falsely advertises a benign purpose and includes evasion techniques targeting AI scanners and registry UIs. It also manipulates its dependency graph by declaring a self-dependency.
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The 'unsafe-malicious-package' npm package executes a postinstall lifecycle script that reads the installer's AWS credentials file located at ~/.aws/credentials and transmits the data unencrypted to a hardcoded external IP address (http://139.59.87.78:8765/listener). This exfiltration occurs automatically without user consent or opt-in. The package's stated functionality to print the current date/time is a decoy, and it employs evasion tactics such as prompt-injection content aimed at AI scanners and XSS payloads targeting registry user interfaces. Additionally, the package declares a self-referential dependency, which is an unusual pattern likely intended to manipulate the installation graph. Multiple specific versions of the package are affected.
Potential Impact
Sensitive AWS credentials stored on the installer's machine can be stolen and transmitted to an attacker-controlled server, potentially leading to unauthorized access to AWS resources. The exfiltration occurs silently during installation, increasing the risk of compromise. The presence of evasion techniques indicates intent to bypass detection mechanisms, raising the threat level.
Mitigation Recommendations
No official patch or remediation is currently documented. Users should avoid installing the 'unsafe-malicious-package' in any of the affected versions. Review and remove the package if already installed. Monitor for any unauthorized AWS activity and consider rotating AWS credentials if exposure is suspected. Since no vendor advisory or patch information is available, check trusted sources regularly for updates or official guidance.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- MAL-2026-6486
- Osv Schema Version
- 1.7.4
- Aliases
- []
- Ecosystems
- ["npm"]
- Database Specific Severity
- null
- Cvss Version
- null
Threat ID: 6a3ef79427e9c79719ff8d8f
Added to database: 06/26/2026, 22:05:08 UTC
Last enriched: 06/26/2026, 22:19:08 UTC
Last updated: 06/26/2026, 22:19:08 UTC
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.