tradepmr-fusion-core-drzak

MAL-2026-1403

npmmalware3/13/2026
Description

Malicious code in tradepmr-fusion-core-drzak (npm)

Indicators of Compromise
SHA256 Hashes (4)
ceecb1232693358a91f011d668cc6b1b7ed5331b8a276fbb86573b1f34bf215e
7c349b8764d0420102fac6617d31810af64e670f6939bed61097a46458ab41c4
9d0a0ff33c8d6b9e7fd021c0d2908d20f48825ec6b1a0cc94596c2e5567b0707
f093e7939eff873b057399ffacb79496c2ce6601d9c8b1d453c21fab8a2f9480
References (1)
https://github.com/advisories/GHSA-6v8m-pxj8-gvhqOSV
Details
Ecosystemnpm
Attack Typemalware
Published3/13/2026
Affected Versions
0
Aliases
GHSA-6v8m-pxj8-gvhq
Quick Actions
All Incidentsnpm Incidents
Agentic AI · Pentesting

Ready for Agentic Automated Testing?

Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.

Zero false positives
PoC for every finding
30+ tools orchestrated
Book a DemoLearn More
Setup in 5 minutesSOC 2 & ISO 27001