malware npm

@frostnode/probe

discovered 2026-06-23

Payload-free scope-reservation STUB (130 bytes, no postinstall hook, no payload) published by the same actor (publisher [email protected]), created 2026-06-04T08:03:56Z. Second probe stub of the campaign, exactly like @zynkit/probe: the @frostnode account holds BOTH the payload package @frostnode/waitfor AND this stub, anchoring/reserving the @frostnode scope. Attributed to the campaign by shared publisher infrastructure (same account that published the payload member @frostnode/waitfor), not by malicious code.

Threat types

other

Malicious versions

  • 0.0.1

Campaigns

Indicators

Read the full analysis →