Threats Tagged 'node-fetch-core'
View all threats tagged with 'node-fetch-core'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'node-fetch-core'
Click on any threat for detailed analysis and mitigation recommendations
Artifact scanner detects npm package 'node-fetch-utils' using external dependency resolution with remote tarball dependency from GitHub 0 A malicious npm package named 'node-fetch-utils' was identified masquerading as a legitimate utility. It uses a remote tarball dependency from GitHub that executes during installation on Windows systems. The package runs an obfuscated postinstall script that downloads a bundled Python runtime, placing it as Microsoft\EdgeBroker\pythonw.exe for persistence. This runtime is then used to execute a fileless Python implant decrypted in memory and launched stealthily via wscript. The dropper scripts self-delete while the disguised runtime remains active, establishing command and control communications. Join the discussion | AlienVault OTX General | 06/23/2026, 12:11:58 UTC Added: 06/23/2026, 19:09:14 UTC |
Showing 1 to 1 of 1 result