malware
npm
@gleamkit/probe
discovered 2026-06-23Payload-free scope-reservation STUB (128 bytes, no postinstall hook, no payload) published by the same actor (publisher [email protected]), created 2026-06-04T08:04:00Z. THIRD probe stub of the campaign, alongside @zynkit/probe and @frostnode/probe, used to reserve/anchor the @gleamkit scope. Verified to exist on the npm registry this session. Attributed to the campaign by shared publisher infrastructure (same <scope>-<6char>@wshu.net burner pattern), not by malicious code.
Threat types
other
Malicious versions
- 0.0.1