@ensdomains/offchain-resolver-contracts
MAL-2025-190808
npmmalware11/24/2025
Description
Malicious code in @ensdomains/offchain-resolver-contracts (npm)
Indicators of Compromise
SHA256 Hashes (4)
ba3c9b6f212be794c2d2b02c8140df515119198de34ac1c52951d5821e6ee6eb
9e33729ef15689f97d628745ade2c8c9a5f42b14ff63f1f151416c9db5732c88
449a7f4debf5a67fffda3029281f829f04868fb9b188ff95bb5fc9a24f092832
7cceedb4233d04578addaad0bb93351ae1c1fc6b07529dc504e2fe7b42a34c79
References (4)
https://github.com/advisories/GHSA-qw8w-c4j7-788xOSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-qw8w-c4j7-788x
Quick Actions