malware npm

@gleamkit/probe

discovered 2026-06-23

Payload-free scope-reservation STUB (128 bytes, no postinstall hook, no payload) published by the same actor (publisher [email protected]), created 2026-06-04T08:04:00Z. THIRD probe stub of the campaign, alongside @zynkit/probe and @frostnode/probe, used to reserve/anchor the @gleamkit scope. Verified to exist on the npm registry this session. Attributed to the campaign by shared publisher infrastructure (same <scope>-<6char>@wshu.net burner pattern), not by malicious code.

Threat types

other

Malicious versions

  • 0.0.1

Campaigns

Indicators

Read the full analysis →