MAL-2025-48953

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ect-987654-ctf/MAL-2025-48953.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2025-48953

Published

2025-10-29T19:10:33Z

Modified

2025-10-31T03:25:40Z

Summary

Malicious code in ect-987654-ctf (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (d6f07a32f7f265a234c3b4e84eda91976ba6cdb73f979ef22104a70af28bf4a0)

The package ect-987654-ctf was found to contain malicious code.

Source: ossf-package-analysis (7c17b20e1213587bf7f4fab7126db8653046bf8ed8aa8d373ca55949fc404365)

The OpenSSF Package Analysis project identified 'ect-987654-ctf' @ 0.0.12 (npm) as malicious.

It is considered malicious because:

The package communicates with a domain associated with malicious activity.
The package executes one or more commands associated with malicious behavior.

Database specific

{
    "malicious-packages-origins": [
        {
            "import_time": "2025-10-29T19:34:48.652256319Z",
            "sha256": "8cfee17eee14280d92fd6f62cd1b6d1bd86a1e6ce6c44ef55db605c61c0a3626",
            "source": "ossf-package-analysis",
            "modified_time": "2025-10-29T19:25:29Z",
            "versions": [
                "0.0.9"
            ]
        },
        {
            "import_time": "2025-10-29T19:34:48.506592277Z",
            "sha256": "d07a856e69db1371aeec719901ebd2bcefe137226a03ff8dda2da20c673d0d40",
            "source": "ossf-package-analysis",
            "modified_time": "2025-10-29T19:20:38Z",
            "versions": [
                "0.0.7"
            ]
        },
        {
            "import_time": "2025-10-29T19:34:48.364720584Z",
            "sha256": "e0ac21e14db9f241f7fd1f6b6b6024da54ac30ead073c3464b8bfb39947fff84",
            "source": "ossf-package-analysis",
            "modified_time": "2025-10-29T19:10:33Z",
            "versions": [
                "0.0.5"
            ]
        },
        {
            "import_time": "2025-10-29T20:07:24.663132503Z",
            "sha256": "8c8a67a1b2c584275dd1b387379b5d1e2374ce35708df5a423cb4320edd9488b",
            "source": "ossf-package-analysis",
            "modified_time": "2025-10-29T19:37:21Z",
            "versions": [
                "0.0.10"
            ]
        },
        {
            "import_time": "2025-10-29T20:37:44.397694171Z",
            "sha256": "7c17b20e1213587bf7f4fab7126db8653046bf8ed8aa8d373ca55949fc404365",
            "source": "ossf-package-analysis",
            "modified_time": "2025-10-29T20:11:27Z",
            "versions": [
                "0.0.12"
            ]
        },
        {
            "ranges": [
                {
                    "type": "SEMVER",
                    "events": [
                        {
                            "introduced": "0"
                        }
                    ]
                }
            ],
            "import_time": "2025-10-31T03:25:16.382544763Z",
            "sha256": "d6f07a32f7f265a234c3b4e84eda91976ba6cdb73f979ef22104a70af28bf4a0",
            "source": "amazon-inspector",
            "modified_time": "2025-10-31T03:06:14Z"
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - actran@amazon.com
- OpenSSF: Package Analysis - FINDER
- - https://github.com/ossf/package-analysis
  - https://openssf.slack.com/channels/package_analysis

Affected packages

npm / ect-987654-ctf

Package

Name: ect-987654-ctf; View open source insights on deps.dev
Purl: pkg:npm/ect-987654-ctf

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.0.5

0.0.7

0.0.9

0.0.10

0.0.12

Database specific

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ect-987654-ctf/MAL-2025-48953.json"