MAL-2025-48673

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/dhqr92010/MAL-2025-48673.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2025-48673
Published
2025-10-26T19:03:27Z
Modified
2025-12-02T10:10:52.975429Z
Summary
Malicious code in dhqr92010 (npm)
Details

The package dhqr92010 was found to contain malicious code.

-= Per source details. Do not edit below this line.=-

Database specific 
{
    "malicious-packages-origins": [
        {
            "import_time": "2025-12-02T09:09:47.177918961Z",
            "modified_time": "2025-12-01T13:08:27Z",
            "source": "reversing-labs",
            "sha256": "92730eabf048376e6ea339022db015d35044833f65aef75983d4824b08de0157",
            "id": "RLMA-2025-05765",
            "versions": [
                "1.251012.11645",
                "1.251012.11715",
                "1.251012.11737",
                "1.251012.11740",
                "1.251013.11355",
                "1.251013.11413",
                "1.251015.11051",
                "1.251015.11106",
                "1.251015.11132",
                "1.251016.11353"
            ]
        }
    ]
}
References
Credits

Affected packages

npm / dhqr92010

Package

Name
dhqr92010
View open source insights on deps.dev
Purl
pkg:npm/dhqr92010

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.251012.11645
1.251012.11715
1.251012.11737
1.251012.11740
1.251013.11355
1.251013.11413
1.251015.11051
1.251015.11106
1.251015.11132
1.251016.11353

Database specific

source 
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/dhqr92010/MAL-2025-48673.json"