uniswap-smart-order-router
MAL-2025-191442
npmmalware11/24/2025
Description
Malicious code in uniswap-smart-order-router (npm)
Indicators of Compromise
SHA256 Hashes (3)
6cbc7778302ead2cbd4c4df0a498581cacaedafb7ba48ed309a88d3acd7d0faa
8e676e2f4d6d8d478177d9c837911e457a604a2e956766919be73504bbf450c5
4dbda3147fde915a97ddd97f51f5ebc1757fa14bca7cad95f333862ad125c3c1
References (4)
https://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomainsOSVhttps://www.wiz.io/blog/shai-hulud-2-0-ongoing-supply-chain-attackOSVhttps://www.stepsecurity.io/blog/sha1-hulud-the-second-coming-zapier-ens-domains-and-other-prominent-npm-packages-compromisedOSVhttps://github.com/advisories/GHSA-4jp7-ch66-mvmvOSV
Details
Ecosystemnpm
Attack Typemalware
Published11/24/2025
Aliases
GHSA-4jp7-ch66-mvmv
Quick Actions