@ensdomains/content-hash

MAL-2025-190666

npmmalware11/24/2025
Description

Malicious code in @ensdomains/content-hash (npm)

Indicators of Compromise
SHA256 Hashes (4)
acc5b8835460a7af0effab91e3fecfb09a2fc8818ec068d25b35f39655e89004
39aeb9f2a2d9a8ee1c57695456c8af6657d069eaee694ef7f8c128bb292bfabd
99f5d25e4be7650c1614dd38c4df501ebef4411f00ad5037c0362064eebae6a9
3ef9bab3a9af409b905e8f9f1bdd06d3214e7ca350481aec7b9f0cc3147772c6
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-29f6-8xrp-f68w
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Setup in 5 minutesSOC 2 & ISO 27001