This package is imitating the popular marked library. It contains a VBScript to extract a bundled PE payload, make it hidden, and execute it.
{ "malicious-packages-origins": null }