@ensdomains/solsha1
MAL-2025-190737
npmmalware11/24/2025
Description
Malicious code in @ensdomains/solsha1 (npm)
Indicators of Compromise
SHA256 Hashes (4)
48948aa2ba413f76c4fff56fcedc8a4d502a9b1fe3f0f2860c62b576b384fab4
5c4a8798162224fba85c25e8c01bb31790ea20f33f47fbe558eb659c197e0a4e
3d7d6789b96f19a8ab2becf3763707a56143050bff197cb3a6c279cbc66dae8a
0b1b2dfea9895c0377f3a12bd2edbd65ec430b0916f95229984b74c77a5d252b
References (4)
https://github.com/advisories/GHSA-6x6m-m74g-c89pOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-6x6m-m74g-c89p
Quick Actions