@ensdomains/react-ens-address
MAL-2025-190809
npmmalware11/24/2025
Description
Malicious code in @ensdomains/react-ens-address (npm)
Indicators of Compromise
SHA256 Hashes (4)
cba211ae33ea36a3514f7889b5c96a143b5700d5b5b470afed1a32583deb4c99
7c136b64e27be18d7c3aeebbcd6a31479adacc70efae5bbf586009180e51098a
4a3f43ae17a1b6c5339e7188d53f6f81d9e2a4d547fac15f7ba7a588305ccd22
255582476614367d6d2d06888c95f76c9cb568cab37d60a3e86b57bdd879e99f
References (4)
https://github.com/advisories/GHSA-vj6r-g9qw-frr9OSVhttps://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-vj6r-g9qw-frr9
Quick Actions