@ensdomains/address-encoder
MAL-2025-190665
npmmalware11/24/2025
Description
Malicious code in @ensdomains/address-encoder (npm)
Indicators of Compromise
SHA256 Hashes (4)
0055d835684d30fef39b594e10ca55c8313c0540ab9dbbbe76e3e539ef25eede
ec8264ecb2af0b5028f08af1a108f7fe73cd1cbe55ea2cb7102a3e28b2e1052e
1b64d83b623974e5dcd650b6ee4c067d063046fa692e27883ebf5d9935714c13
85053bc57267d919ff30f906ec6c9cb691e17f17b5b887913d35733b4caff122
References (4)
https://github.com/advisories/GHSA-6gpw-2wh2-2xcmOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-6gpw-2wh2-2xcm
Quick Actions