npm

x509-escaping

x509-escaping is identified in the SafeDep analysis "npm - The Playground for Malicious Packages". Multiple npm packages impersonating popular package names are being used to distribute malware. We take a closer look at the campaign.

discovered 2024-12-11

Threat types

typosquat

Malicious versions

0.0.1
0.0.0

Campaigns

No Specific Campaignattributed-to

Indicators

ipv413.60.183.44communicates-with
ipv413.60.0.0communicates-with
ipv413.63.255.255communicates-with

Techniques

ttpT1195.001 Supply Chain Compromise: Compromise Software Dependencies and Development Toolsuses
ttpT1059.007 Command and Scripting Interpreter: JavaScriptuses
ttpT1036 Masquerading: package impersonation and typosquattinguses

Read the full analysis →