chai-status
MAL-2025-191546
npmmalware12/2/2025
Description
Malicious code in chai-status (npm)
Indicators of Compromise
SHA256 Hashes (4)
ac16fe9f8e1d6ef61aa920967a83f93dc57d69f70b534ac70a2e59870b2b3533
36f6f6dd537cdb195504efe77187096dff2f05e7ffd064975c9f54a4d45e17b9
bfa71fcd09a95d672d0fb6842e53d31fc2309da7652ec9fdb255546ac9c6c618
4ca910a0b89790bfd277faf857b9d3748e6926029dfe4b0bba497b929d3c7a64
References (6)
https://github.com/advisories/GHSA-wh9m-xqr4-wc75OSVhttps://socket.dev/blog/north-korea-contagious-interview-npm-attacksOSVhttps://security.snyk.io/vuln/SNYK-JS-CHAISTATUS-14157129OSVhttps://security.snyk.io/vuln/SNYK-JS-CHAISTATUS-14152245OSVhttps://thehackernews.com/2025/11/north-korean-hackers-deploy-197-npm.htmlOSVhttps://npmjs.com/package/chai-statusOSV
Details
Ecosystemnpm
Attack Typemalware
Published12/2/2025
Aliases
GHSA-wh9m-xqr4-wc75SNYK-JS-CHAISTATUS-14152245SNYK-JS-CHAISTATUS-14157129
Quick Actions