{"schema_version":"1.7.3","id":"MAL-2025-48953","published":"2025-10-29T19:10:33Z","modified":"2025-10-31T03:25:40Z","summary":"Malicious code in ect-987654-ctf (npm)","details":"\n---\n_-= Per source details. Do not edit below this line.=-_\n\n## Source: amazon-inspector (d6f07a32f7f265a234c3b4e84eda91976ba6cdb73f979ef22104a70af28bf4a0)\nThe package ect-987654-ctf was found to contain malicious code.\n\n## Source: ossf-package-analysis (7c17b20e1213587bf7f4fab7126db8653046bf8ed8aa8d373ca55949fc404365)\nThe OpenSSF Package Analysis project identified 'ect-987654-ctf' @ 0.0.12 (npm) as malicious.\n\nIt is considered malicious because:\n\n- The package communicates with a domain associated with malicious activity.\n\n- The package executes one or more commands associated with malicious behavior.\n","affected":[{"package":{"name":"ect-987654-ctf","ecosystem":"npm","purl":"pkg:npm/ect-987654-ctf"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"}]}],"versions":["0.0.9","0.0.7","0.0.5","0.0.10","0.0.12"],"database_specific":{"source":"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/ect-987654-ctf/MAL-2025-48953.json"}}],"database_specific":{"malicious-packages-origins":[{"import_time":"2025-10-29T19:34:48.652256319Z","modified_time":"2025-10-29T19:25:29Z","sha256":"8cfee17eee14280d92fd6f62cd1b6d1bd86a1e6ce6c44ef55db605c61c0a3626","source":"ossf-package-analysis","versions":["0.0.9"]},{"import_time":"2025-10-29T19:34:48.506592277Z","modified_time":"2025-10-29T19:20:38Z","sha256":"d07a856e69db1371aeec719901ebd2bcefe137226a03ff8dda2da20c673d0d40","source":"ossf-package-analysis","versions":["0.0.7"]},{"import_time":"2025-10-29T19:34:48.364720584Z","modified_time":"2025-10-29T19:10:33Z","sha256":"e0ac21e14db9f241f7fd1f6b6b6024da54ac30ead073c3464b8bfb39947fff84","source":"ossf-package-analysis","versions":["0.0.5"]},{"import_time":"2025-10-29T20:07:24.663132503Z","modified_time":"2025-10-29T19:37:21Z","sha256":"8c8a67a1b2c584275dd1b387379b5d1e2374ce35708df5a423cb4320edd9488b","source":"ossf-package-analysis","versions":["0.0.10"]},{"import_time":"2025-10-29T20:37:44.397694171Z","modified_time":"2025-10-29T20:11:27Z","sha256":"7c17b20e1213587bf7f4fab7126db8653046bf8ed8aa8d373ca55949fc404365","source":"ossf-package-analysis","versions":["0.0.12"]},{"import_time":"2025-10-31T03:25:16.382544763Z","modified_time":"2025-10-31T03:06:14Z","ranges":[{"events":[{"introduced":"0"}],"type":"SEMVER"}],"sha256":"d6f07a32f7f265a234c3b4e84eda91976ba6cdb73f979ef22104a70af28bf4a0","source":"amazon-inspector"}]},"credits":[{"name":"Amazon Inspector","contact":["actran@amazon.com"],"type":"FINDER"},{"name":"OpenSSF: Package Analysis","contact":["https://github.com/ossf/package-analysis","https://openssf.slack.com/channels/package_analysis"],"type":"FINDER"}]}