plain-crypto-js
MAL-2026-2306
npmmalware3/31/2026
Description
Malicious code in plain-crypto-js (npm)
Indicators of Compromise
SHA256 Hashes (3)
f18d90df82216aedaaeca02607816457cfe0df4bc89bf292a4d7f3549e912d8c
4dfdc3dd18fb6fe824f34c663d26a2f7225e65a4b858a6f3ed6620a7a725c861
f29920f3d0ab4a3f8114bb0291487157d1ba45400f5edb8483c74928dfc63a1e
Domains (1)
sfrclak.com
IP Addresses (1)
142.11.206.73
Details
Ecosystemnpm
Attack Typemalware
Published3/31/2026
Affected Versions
0
Aliases
GHSA-2x9r-6wxq-hrr7
Quick Actions