MAL-2026-6537: Malicious code in gptmini (npm)
The gptmini npm package versions 4.0.2 and 4.0.6 contain malicious code that executes during installation on Windows systems. Specifically, the package's preinstall script runs a command that downloads and executes an HTML Application from a remote attacker-controlled HTTP server, resulting in remote code execution without user interaction. The package masquerades as a GPT/OpenAI SDK wrapper but has empty author metadata and connects to an unrelated domain, indicating malicious intent.
AI Analysis
Technical Summary
The gptmini npm package (versions 4.0.2 and 4.0.6) includes a preinstall lifecycle script that executes a Windows command to fetch and run an HTML Application from a remote host (http://fixars.top) over plain HTTP. This behavior occurs automatically during 'npm install' on Windows, enabling remote code execution on the installer's machine without user interaction. The package falsely presents itself as an AI SDK wrapper, but the preinstall script acts as a dropper for attacker-controlled code, posing a significant security risk.
Potential Impact
Successful installation of the affected gptmini package versions on Windows leads to remote code execution on the installer's machine. This allows an attacker to run arbitrary code with the privileges of the user performing the installation, potentially compromising the system and data.
Mitigation Recommendations
No official patch or remediation is currently documented. Users should avoid installing the affected gptmini package versions (=4.0.2 and =4.0.6). Verify package authenticity before installation and consider using trusted package sources or alternatives. Monitor vendor advisories for updates or fixes.
MAL-2026-6537: Malicious code in gptmini (npm)
Description
The gptmini npm package versions 4.0.2 and 4.0.6 contain malicious code that executes during installation on Windows systems. Specifically, the package's preinstall script runs a command that downloads and executes an HTML Application from a remote attacker-controlled HTTP server, resulting in remote code execution without user interaction. The package masquerades as a GPT/OpenAI SDK wrapper but has empty author metadata and connects to an unrelated domain, indicating malicious intent.
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The gptmini npm package (versions 4.0.2 and 4.0.6) includes a preinstall lifecycle script that executes a Windows command to fetch and run an HTML Application from a remote host (http://fixars.top) over plain HTTP. This behavior occurs automatically during 'npm install' on Windows, enabling remote code execution on the installer's machine without user interaction. The package falsely presents itself as an AI SDK wrapper, but the preinstall script acts as a dropper for attacker-controlled code, posing a significant security risk.
Potential Impact
Successful installation of the affected gptmini package versions on Windows leads to remote code execution on the installer's machine. This allows an attacker to run arbitrary code with the privileges of the user performing the installation, potentially compromising the system and data.
Mitigation Recommendations
No official patch or remediation is currently documented. Users should avoid installing the affected gptmini package versions (=4.0.2 and =4.0.6). Verify package authenticity before installation and consider using trusted package sources or alternatives. Monitor vendor advisories for updates or fixes.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- MAL-2026-6537
- Osv Schema Version
- 1.7.4
- Aliases
- []
- Ecosystems
- ["npm"]
- Database Specific Severity
- null
- Cvss Version
- null
Threat ID: 6a3ef76a27e9c79719fee812
Added to database: 06/26/2026, 22:04:26 UTC
Last enriched: 06/26/2026, 22:08:17 UTC
Last updated: 06/27/2026, 01:59:12 UTC
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.